Likewise, the company's decision to release its own Java patches rather than rely on Oracle's public release may have helped spread the later Java-based version of Flashback: by last February Oracle had patched the Java vulnerability leveraged by Flashback, but Apple didn't get around to plugging the hole until this month. The initial release of Flashback mimicked Adobe's Flash installer. Apple refuses to preinstall Adobe's Flash player, so Mac users are prompted to download and install the plug-in when they encounter a Web site that uses Flash. The FAQ explains that Flashback's creators may have exploited Apple's go-it-alone strategy. Flashback malware infections drop to 30,000 Macs.Kaspersky: Mac security is 10 years behind Microsoft'.One in five Macs infected with malware is inaccurate.