Flash Player and Security Updates

A data point regarding Apple’s official stance regarding its decision to no longer bundle Flash Player with Mac OS X. Here’s the statement I got from Apple last month:

“We’re happy to continue to support Flash on the Mac, and the best way for users to always have the most up to date and secure version is to download it directly from Adobe.”

Yesterday, Apple released Mac OS X 10.6.5. The security-related release notes for this update list 134 CVE IDs for fixed vulnerabilities. 55 of those vulnerabilities are for Flash Player alone.

Thursday, 11 November 2010