Security Focus, recently released an advisory in a 0-day exploit involving the latest version of flash (Retired: Adobe Flash Player SWF File Remote Code Execution Vulnerability). No patches, as of posting time, has been released.

This involves malicious scripts getting run, and directing you to malicious flash sites. A technical overview can be found here: SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc


Read Article from ZDNet: Adobe Flash zero-day exploit in the wild | Zero Day | ZDNet.com