In Alias typed on Sat, 08 Aug 2009 15:55:01 +0200:
Sorry Firefox security is awful! The truth is dummies using Firefox who
hasn't disabled DLLs are too dumb to know any better. But that is a good
thing right? Fool as many as possible and don't let the truth come out,
eh?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Firefox doesn't distinguish between code-bearing extensions and those
that are merely Javascript/XUL, either during installation or
management, and this strikes us as an appalling oversight. We strongly
believe that DLL-based extensions ought to require higher trust or
scrutiny than those based on sandboxed languages, and the user is given
no real choice on this front...
Firefox does not provide a way to disable plugins: it requires a manual
foray into the filesystem to rename or remove the DLLs in question. IE
provides complete control over all kinds of plugins via the Add-in
manager.
http://unixwiz.net/techtips/browser-addins.html
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~