Are you safe?
To allow Mac users find out whether their machines are safe, Secunia, a security company, has provided a test on its website http://secunia.com/advisories/18963.Before running the test, you will need to set your Safari to open 'Safe' files automatically. You can locate the settings at Safari->Preference.
Follow the instructions on the website on where to click in order to download a file which is seen as 'safe' by Safari. The goal is to test whether the file will be opened automatically, which it shouldn't. Upon opening the file it runs a benign script that attempts to launch the Calculator app. When the calculator pops up, you are NOT safe.
A look inside the hole
'Safe' files in Safari include movies, pictures, audio, PDF, archives etc. One might argue that opening these files automatically is a convenient feature, but it is always a bad feature in terms of security.The test provided by Secunia demonstrates that a hacker can decorate malicious shell scripts to look like 'safe' files. Keep in mind that the UNIX shell scripting is a very powerful tool, capable of performing a lot of admin-level exercise on the computer, so you really don't want some jokers to run scripts as will on your machine.