updated 09:38 am EDT, Thu October 24, 2013
Could limit key attack vector
Flash is now a sandboxed plugin in OS X Mavericks, according to an Adobe blog post. Using the OS' App Sandbox feature, Adobe says it has been able to limit Flash's file read/write access and what assets the plugin can find in the first place. It can no longer reach local connections to device resources and IPC (interprocess communications) channels, for instance, and network privileges are restricted such that Flash-based malware can't communicate with servers set up by hackers.
Sandboxing is already employed to various extents in other browsers, like Chrome and Internet Explorer, but the release of Mavericks marks the first time Safari has been properly safeguarded. In the past, a number of Flash-based malware attacks have been directed at Mac and Windows systems. Java is actually a more common target, but used by fewer websites.