SSL/TLS implementation in both iOS and OS X is vulnerable to man-in-the-middle attack. While iOS 7 has a patch, OS X still doesn't.
We hear about these things all the time, but what's scary in this case it's not even clear which iOS and OS X versions specifically are affected (at least I haven't seen this). I hope it's not all current/supported releases. Anybody got some other info on that?