Adobe has launched a public beta of a new Flash Player sandbox (aka "Protected Mode") for Mozilla's flagship browser and the company expects to have a final version of the anti-exploit roadblock later this year.
According to Peleus Uhley, a researcher in Adobe's secure software engineering team, the design of the Firefox Flash sandbox is similar to the Protected Mode mitigation fitted into Adobe Reader X.
Like the Adobe Reader X sandbox, Flash Player will establish a low integrity, highly restricted process that must communicate through a broker to limit its privileged activities. The sandboxed process is restricted with the same job limits and privilege restrictions as the Adobe Reader Protected Mode implementation. Adobe Flash Player Protected Mode for Firefox 4.0 or later will be supported on both Windows Vista and Windows 7.
Ever since Adobe Reader X unveiled its sandbox in November 2010, Adobe says it has "not seen a single successful exploit in the wild" against the newest version of that sofware.
"We hope to see similar results with the Flash Player sandbox for Firefox once the final version is released later this year," Uhley said.
Separately, Adobe security chief Brad Arkin says the company is moving to silent auto security updates for Flash Player "soon."