Adobe security bulletin APSB12-03 describes an XSS flaw: This update resolves a universal cross-site scripting vulnerability that could be used to take actions on a user's behalf on any website or webmail provider, if the user visits a malicious website (CVE-2012-0767).
External References: http://www.adobe.com/support/security/bulletins/apsb12-03.html
This issue has been addressed in following products: Supplementary for Red Hat Enterprise Linux 6 Supplementary for Red Hat Enterprise Linux 5 Via RHSA-2012:0144 https://rhn.redhat.com/errata/RHSA-2012-0144.html