After the vulnerability in Adobe Reader and Acrobat,
now also Flash for Windows, Linux, Mac and for the
first time also Google's Android are vulnerable to
an extremely critical zero day exploit, which for Windows
is already in the wild.
http://www.h-online.com/open/news/item/Attackers-exploit-additional-zero-day-vulnerability-in-Adobe-Flash-and-Reader-1078297.html
http://secunia.com/advisories/41434
As it is not yet known, if turning off Javascript
would stop an attack, it seems to be advisable
to rename the Flash plugin temporarily, in order
to stop it from working, until the bug will be fixed
on September 27th, as it has been announced.
Fred