A vulnerability in SSL 3.0 (POODLE) could allow an attacker to obtain clear text data (such as cookies). Modern web browsers support newer stronger encryption methods which are not vulnerable. Unfortunately to ensure backwards compatibility they will silently revert to using SSL 3.0 if necessary when establishing a connection.
The easiest way to prevent an attacker from attempting to exploit this vulnerability is to disable the use of SSL 3.0. The next version of Firefox will disable SSL 3.0 by default but you can disable it in other recent versions by modifying the configuration settings.
Note : This might cause incompatibility problems with some sites that are using an out of date web server – but do you really want to trust those sites with your data?
To access the configuration settings open Firefox and type ‘about:config’ (without quotes) into the address bar.
Firefox is a trademark of the Mozilla Foundation.