There is obviously no perfect solution to this (for some time, if that).
For one thing, this has the NSA's fingerprints all over it. If not involved from the outset in the design then taking advantage of the security flaw, otherwise incompetent (which I doubt). But, as previously, choosing to harm the security of the American public towards their own aims.
It seems beyond unlikely that such a severe security flaw could exist as long without the most interested corporate parties (i.e. Intel, Apple, etc.) being aware of it. Either way bad: they are truly incompetent and incapable of providing proper security or, perhaps worse, knew of this and consequently cannot be trusted with our security.
Apple's best remedy at the moment is a partial patch. Aside from that shortcoming, to do as much one would have to hold their nose and "upgrade" to the latest versions of iOS and MacOS. One needn't be reminded that many would be better off—all else being equal—not dealing with all the problems of iOS 11 for now. MacOS High Sierra is arguably the worst OS Apple has devised for the Macintosh. Beyond such things as allowing outsiders root access to one's system its features have presented users with an ongoing host of problems. But at the moment this most regrettable solution is the best on offer.
Given lead times involved it could probably not be before 2020 when a more permanent solution is offered, as in the chips within computers sold having been revised. That is likely optimistic as requiring rapid re-engineering by Intel and others. Until such time all modern computers remain intrinsically compromised due their hardware. Patching this over with software is just a band-aid.
This is a chance for someone like Apple to shine. To take it as a reason and opportunity to return to some basic old school values such as sound design with form following function, value for one's money, AND real security. Given the track record of Mr. Cook & Company, I am not particularly optimistic in this regard.
I would welcome them pleasantly surprising me.