The host is missing a security update according to Apple advisory, APPLE-SA-2015-05-06-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site. Successful exploitation leads to bypass the Same Origin Policy, execute arbitrary code or cause a denial of service (memory corruption and application crash).