Much as I admire their operating system and hardware, Apple still does have quite a bit to learn about security, so we’ll need to keep pounding them when they do something moronic like bundling Safari into a Quicktime update (which included a security fix).
From the folks at the Berkman Center at Harvard (StopBadware):
A few weeks ago, the blogosphere raised concerns about the Windows version of Apple Software Update for offering new software installations (e.g., Safari) disguised as product updates. At the time, we blogged about it and said we were looking into it. It turns out that we were prepared to release an alert today identifying the product as badware. I’m glad to report, however, that we don’t have to, as Apple yesterday released an updated version that addresses the concerns that bloggers and StopBadware.org raised with them.