The best way to avoid being the victim of exploits that target browsers and browser plugins is to turn off everything by default - no javascript, no flash, no java, no cookies. Then whitelist particular domains that you trust. It's a bit of a pain in the ass to manage but it does work. You...