Krebs on Security – (International) Oracle ships critical security update for Java. Oracle released an update for Java to fix the recent critical vulnerability that allowed malware to exploit computers running the program. The update also increases the default security settings for running Java applications from ‘medium’ to ‘high.’
Source: http://krebsonsecurity.com/2013/01/oracle-ships-critical-security-update-for-java/