Adobe will release update for flash-plugin on 21st Sept 2011 http://blogs.adobe.com/psirt/2011/09/prenotification-security-update-for-flash-player.html This bug is used for: "important universal cross-site scripting issue that is reportedly being exploited in the wild in targeted attacks."
APSB11-26 [1] resolves the following flaw: This update resolves a universal cross-site scripting issue that could be used to take actions on a user's behalf on any website or webmail provider if the user visits a malicious website (CVE-2011-2444). Note: There are reports that this issue is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious link delivered in an email message. [1] http://www.adobe.com/support/security/bulletins/apsb11-26.html
This issue has been addressed in following products: Supplementary for Red Hat Enterprise Linux 5 Supplementary for Red Hat Enterprise Linux 6 Via RHSA-2011:1333 https://rhn.redhat.com/errata/RHSA-2011-1333.html
This issue has been addressed in following products: Extras for RHEL 4 Supplementary for Red Hat Enterprise Linux 5 Supplementary for Red Hat Enterprise Linux 6 Via RHSA-2011:1434 https://rhn.redhat.com/errata/RHSA-2011-1434.html