Various 2.x releases of WebKitGTK+ suffer from over 130 vulnerabilities. These range from use-after-free to arbitrary code execution issues.
ba603f11beba8793a166702048b873c2
Apple Security Advisory 2014-09-17-4 - Safari 6.2 and Safari 7.1 are now available and address credential interception, arbitrary code execution, and data browsing vulnerabilities.
f43207e94e8bde8b0a9a21267314a75f