Microsoft has its share, but the worst one right now is Adobe Flash, a far worse vulnerability than this. Take a look at the top three on this page (from 2/21):
Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before 4.0.0.1628 allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2014.That's a very serious problem affecting Windows, MacOS and Linux - allowing a root kit to be installed without you doing anything, and without any visible sign. I strongly suggest installing ClickToFlash or something similar at least.
This Apple flaw is only a problem if you're on a public, unsecured network. If you're on a secure hotspot, or connected to a wired network (as I am at the moment), there's no vulnerability. At any rate, I'm sure Apple will roll out a MacOS fix quickly - it should be an easy one at least.
Does using a VPN in a public place help mitigate this?