As promised, Apple just issued an update to Java for OS X that removes the Flashback malware which infected some 600,000 Macs worldwide. Apple's recommending that OS X 10.6 users turn off Java in browsers entirely if they don't need it, but it's a little smarter in Lion: the update turns off support for automatically executing Java applets in Safari by default, and is pretty aggressive about it — if you turn automatic execution back on and don't use any applets for an "extended" period of time, the system will turn the permissions back off again. The update is available now in Software Update — we'll see if any Flashback variants sneak by in the future.