Safari in Mavericks makes Flash more secure via sandboxing

A blog post from Adobe platform security strategist Peleus Uhley explains that the new version of Safari in Mavericks is actually safer than before, thanks to sandboxing. That finally puts Mavericks Safari in the same boat as Internet Explorer, Firefox and Chrome, writes CNet.

Uhley explained that Flash Player is now protected by an OS X App Sandbox, which limites the access software has to system resources and data. Sandboxing Flash makes Mavericks systems more secure against malicious Flash exploits, and poorly programmed Flash apps. Uhley writes:

For the technically minded, this means that there is a specific com.macromedia.Flash file defining the security permissions for Flash Player when it runs within the sandboxed plugin process. As you might expect, Flash Player’s capabilities to read and write files will be limited to only those locations it needs to function properly. The sandbox also limits Flash Player’s local connections to device resources and inter-process communication (IPC) channels. Finally, the sandbox limits Flash Player’s networking privileges to prevent unnecessary connection capabilities.

That's not the only benefit for Safari in Mavericks. Safari also implements a new Safari Power Saver feature that keeps Flash objects embedded on web pages from loading arbitrarily, until you specifically give Safari permission to do so.

Source: CNet

Have something to say about this story? Leave a comment! Need help with something else? Ask in our forums!

Peter Cohen

Mac Managing Editor of iMore and weekend Apple Product Professional at a local independent Apple reseller. Follow him on Twitter @flargh

More Posts



← Previously

More zombie mayhem comes to iOS with Dead Trigger 2

Next up →

Deal of the Day: Seidio LEDGER Flip Case for iPhone 5C

Reader comments

Safari in Mavericks makes Flash more secure via sandboxing


It is nice that Apple has tweaked Safari to better support Flash, it is something that needed to be done because the fact of the matter is Flash hasn't died yet and people are still using it. Personally I feel the faster Flash dies and withers away the better.

I didn't install Flash in Safari in Mountain Lion. Is it recommended to go ahead and do that now? It is necessary still and I don´t like using Chrome.

When do we get to put Flash on the rubbish tit with 8-tracks, floppies and the Super Drive?

With my crap connection I generally start a video clip downloading, buffer at least 3/4 of the file while I read an article or do some other work and come back. Now i'm seeing the video just stop downloading until I come back to the page. Is that part of the new background resource management voodoo from Mavericks, something specific to Safari, or have gremlins possessed my system?