ZDNet: On Friday, Adobe issued a warning about a new zero-day vulnerability in its Flash and PDF software. According to the advisory, "This vulnerability (CVE-2010-1297) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild against both Adobe Flash Player, and Adobe Reader and Acrobat."
No patch is currently available. However, users can mitigate their risk by using Reader or Acrobat 8 or by deleting or renaming the authplay.dll file installed by the software.