Thankfully, following the last , Apple implemented a proactive system that over the previous 35 days. So, Mac OS X users who infrequently or rarely use Java should already have the software disabled and not have to worry.

If you're not sure whether your Java is enabled or disabled in Mac OS X, there's a way to find out. Kandek says, "Mac users can check on the state of Java by using the Java Preferences program, which allows the user to disable the connection between Java and the browser by unchecking the "On" field."

Storms takes issue with Oracle's lack of disclosure and transparency when it comes to threats like this. "Oracle really should take a page out of Microsoft's security response book and start communicating with users about security issues."

Storms sums up, "Until then, the only recourse for users is to disable Java in all Web browsers to protect against drive-by attacks."