Apple recently released an update to its Safari browser.

"The update to Safari 5.1.1 closes numerous holes, but the one with the ID CVE-2011-3230 is especially critical -- firstly, because it is very easy to exploit, and secondly, because public demonstrations of it are already in circulation," The H Security reports. "At its simplest, a web site can use a basic JavaScript command to launch arbitrary programs on Macs."

"Aaron Sigel, who discovered the hole, says that he informed Apple of the problem; he has since published demo code," the article states.

Go to "Update closes critical Safari hole on Mac OS X" to read the details.

For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.