One thing on which I've never been clear... Are all the security holes on which these exploits are based present in non-current versions of OS X/Safari/QuickTime/etc, or do they exploit newly introduced holes?
Pretty much mostly the former.
That's interesting, because:
I've always assumed that these exploits are discovered by people scrutinizing new incarnations of OS X and apps, and
It suggests that at least some of the exploits address security holes that have been around (perhaps waaay) longer than I'd thought.
The new Great Equalizer is the SEND button.
In Memory of Harv: Those who can make you believe absurdities can make you commit atrocities. ~Voltaire
