One of the things I love about Safari is it’s ability to download and automatically “unpack” or “unstuff” a compressed file so you don’t have to. But that functionality apparently exposes a potentially very dangerous security risk.
Well, here’s another little hole in the Safari browser that can be potentially very very dangerous. Easy to fix, and you should disable it right this very minute.
If you want the gory details you can click on the link above. Otherwise you should stop reading this right now, open Safari’s preferences, and on the General tab you should uncheck the checkbox that says “Open ‘safe’ files after downloading.