Correct me if I’m wrong, but I think this is the exact same class of hole that the Safari for Windows beta had a few weeks ago - a protocol handler allowing arbitrary command line execution. Think it’ll get as much press?