Another (nasty) OS X vulnerability
Richard Harper spotted this little nasty and sent a heads-up to a mailing list I monitor ....
"The demo attempts to open a Terminal window to display the contents of a folder. If you are running Mac OS X in its standard configuration and use Safari, the window will open without waiting for a prompt. The script could just as well delete all files accessible to the current user. At this point, no web pages are known to misuse this vulnerability. However, this could change quickly."
Cross-reference - Mac OS X viruses disclosed: