Adobe Flash Player Now Sandboxed in Safari on OS X Mavericks

Thursday October 24, 2013 7:06 AM PDT by Richard Padilla
new_flashlogo_3 Software maker Adobe has announced on its blog (via ZDNet) that its Flash Player software is now sandboxed for the version of Safari found in OS X Mavericks, preventing malware targeting Flash from accessing sensitive data and system resources beyond Apple's browser. As described by Apple, sandboxing "provides a last line of defense against the theft, corruption, or deletion of user data" if a malicious attempt is made at exploiting an app.
For the technically minded, this means that there is a specific com.macromedia.Flash Player.plugin.sb file defining the security permissions for Flash Player when it runs within the sandboxed plugin process. As you might expect, Flash Player’s capabilities to read and write files will be limited to only those locations it needs to function properly. The sandbox also limits Flash Player’s local connections to device resources and inter-process communication (IPC) channels. Finally, the sandbox limits Flash Player’s networking privileges to prevent unnecessary connection capabilities.
Flash is a common target for malware and a number of such attacks have affected Mac users, including a trojan named Flashback that began as a fake Flash Player installer before returning with a multi-pronged infection strategy as it infected over 600,000 Macs worldwide. This past February, Adobe also released a Flash Player update to address a pair of security vulnerabilties as Apple updated its Xprotect anti-malware system to enforce new minimum version requirements, blocking all previous versions of Flash Player.

OS X Mavericks is available as a free, one-step update for all Mac users running OS X Snow Leopard and above, available on the Mac App Store. [Direct Link]

Top Rated Comments

(View all)

14 months ago
Adobe Flash, something everyone wishes would go away but unfortunately is an necessary evil.
Rating: 15 Votes
14 months ago
Definitely a good move in my opinion. A better move would be for developers to transition once and for all to HTML5 and drop the flash trash.
Rating: 10 Votes
14 months ago

Adobe Flash, something everyone wishes would go away but unfortunately is an necessary evil.


Respectfully, the minute people stop believing that, it will go away. I only say that because I haven't had Flash installed for several years now, and this is my daily use system.

I get there may be some corner cases... Yes I know people need to do there job and corporate (or powers that be) haven't migrated yet. I'm stuck in that situation with Java right now. As soon as my employer migrates away from Java (should be Q1 2014) my hassle free days of using the inter webs will begin.

I'm just sayin'...
Rating: 4 Votes
14 months ago

If Apple is so concerned about legacy systems, why is my 2006 Mac Pro excluded from Mavericks support???


Because it only has a 32bit boot ROM and thus cannot work a 64bit system. The ROM is also too small for the 64bit version to be installed.
Rating: 3 Votes
14 months ago
WHAT A LOAD OF BULL!

When you go and install Flash Player from the Adobe website:

Optional offer:

Yes, I want to try the free Lightroom 5 trial and learn how to make good shots great. Add to my download.


:rolleyes: :rolleyes: :rolleyes: :rolleyes:

No thank you. I'm a Creative Cloud subscriber already.

Awesome on the sandboxing though! :D
Rating: 3 Votes
14 months ago
Flash crashes so much that i have to play in the sand box.....

Rating: 3 Votes
14 months ago

Respectfully, the minute people stop believing that, it will go away. I only say that because I haven't had Flash installed for several years now, and this is my daily use system.

I get there may be some corner cases... Yes I know people need to do there job and corporate (or powers that be) haven't migrated yet. I'm stuck in that situation with Java right now. As soon as my employer migrates away from Java (should be Q1 2014) my hassle free days of using the inter webs will begin.

I'm just sayin'...


Xvideos.com uses flash. That means that unfortunately, Flash is staying on my system for the near future.
Rating: 3 Votes
14 months ago


OS X Mavericks is available as a free, one-step update for all Mac users running OS X Snow Leopard and above, available on the Mac App Store.


A lot of media outlets are reporting Mavericks availability in those terms. It's like saying "iOS 7 is available to anyone running iOS 5 and above". Total nonsense. OS X Mavericks is available to anyone who has a Mac that is capable of running it. It doesn't matter what version of OS X you've got at the moment.

My ancient white MacBook I bought in 2006 won't run it, despite the fact it's got Snow Leopard on it and my Mac Pro 1,1 bought in 2007 won't run it either despite the fact I've got Lion on it at the moment. Both machines are incapable of running Mavericks so it's the hardware that dictates what you can run, not what version of OS X you've got at the moment.

Do you think I over-reacted? Perhaps I should get out more? :D
Rating: 2 Votes
14 months ago
Since I have uninstalled Adobe Flash for Safari 3 years ago, I got zero crashes and battery life is much improved.
I use the YouTube5 extension (http://www.verticalforest.com/youtube5-extension/) and for the few dinosaur websites that still use Flash I just click on the ''Open in Chrome (https://github.com/lhagan/Open-in-Chrome)'' button in Safari.
Rating: 2 Votes
14 months ago

I don't see how this would affect that capability. It just means that the .swf you drag in there will be running in a sandbox with limited access to the 'outside' as described.


Oh I see -- this doesn't limit what flash files can be run, just what those files can do when running. Got it, thank you!
Rating: 2 Votes

[ Read All Comments ]