Ok, maybe I was naive to do this, but I found a link that purported to be a proof of concept of a security hole in Safari. I have a Mac and figured it's secure and anything wanting to run will need to ask me to give permission, right? Here's the URL: http://www.insecure.ws/warehouse/archives/safari/0x06_test.html I waited maybe 20-30 seconds and suddenly Terminal opened and ran a command! I'm serious - I was shocked. Here's what showed up and ran in Terminal: ssh: a -F /Volumes/ssh/config: No address associated with nodename [Process exited - exit code 255] WTF???? Is Apple going to fix this or what?