Date: Thursday, October 24th, 2013, 22:00
Category: News, security, Software
When in doubt, sandbox the sucker.
Per Mac|Life, Adobe announced on Wednesday that the latest version of the Safari web browser included with OS X Mavericks now features app sandboxing for Flash Player, following similar moves with browsers from Google, Microsoft and Mozilla.
Although Flash Player has been sandboxed for some time, for whatever reason Apple didn’t get on board with Safari until version 7.0, which is included with this week’s update to OS X Mavericks.
“For the technically minded, this means that there is a specific com.macromedia.Flash Player.plugin.sb file defining the security permissions for Flash Player when it runs within the sandboxed plugin process,” explains Adobe Platform Security Strategist Peleus Uhley.
“As you might expect, Flash Player’s capabilities to read and write files will be limited to only those locations it needs to function properly. The sandbox also limits Flash Player’s local connections to device resources and inter-process communication (IPC) channels. Finally, the sandbox limits Flash Player’s networking privileges to prevent unnecessary connection capabilities.”
The bottom line is that viewing Flash Player content will now be safer and more secure for Safari users on OS X Mavericks, thanks to the combined work of Adobe and Apple, who not so long ago were on opposite sides of the track when it came to Flash technology.
If it makes it more secure, then godspeed…