In a current Support Note, the Apple said that the update addresses a recently identified vulnerability with Java web plug-in. For those systems with Mountain Lion and OS X Lion, the Apple renovates Java for Mac and suggests that the customers ensure that they’re running the latest version of the Java 7, and then update the Java through the Java Control Panel app.
According to the Intego’s Mac Security Blog, update modifies the Xprotect component of the OS X, aka file Quarantine, to block the outdated versions of Java browser plug-in.
The minimum required version of the Apple’s Java plugin for the Snow Leopard is 13.9.7 now ( Java 6 update 51), up from the 13.9.5 (Java 6 update 45). The Apple provides its own version of Java for the Snow Leopard and has continued to launch the security update for it.
On Mountain Lion and Lion, the minimum version of the Apple’s Java plugin has extended from 14.7.0 (that corresponds with the Oracle’s Java 7 update 21) to 14.8.0 ( which corresponds with the Java 7 update 25). Beginning with the Lion, Apple bundles Java with the OS X; it is now 3rd party offering available from the Oracle.
Apple's best practice continues to recommend that the customers enable Java when necessary.
Ø If you want to run a Java web app then enable Java in your web browser.
Ø Limit your web browser to the websites which need Java web app. Don’t open other websites while the Java plugin is enabled.
Ø When you’re done, disable Java web plugin.
