Sunday, Adobe released yet another security patch for Flash. The second in four weeks and fifth for the year. Google found this one for them.
The cross-site scripting bug has been used against gmail accounts to steal user ids and passwords. It is believed it could also be used on other email services as well.
Be sure to update the flash plug-in in your browsers. Remember, IE and Firefox require separate updates.