With a new attack that targets a security vulnerability in Oracle's Java spreading through the hacker underground and no available fix in sight, it may be time for users to deal with the plugin's bug ...