Viet-Trung Luu, from the Google Chrome team:
With last week’s Chrome Stable update, we took a major step forward in security by bringing an even deeper level of sandbox protection to Adobe Flash Player on Windows. Since 2010, we’ve been working with Adobe to sandbox the Flash Player plug-in to protect users against common malware. Now, thanks to a new plug-in architecture, Flash on Windows is inside a sandbox that’s as strong as Chrome’s native sandbox, and dramatically more robust than anything else available. And for the first time ever, Windows XP users have a sandboxed Flash, making them much safer online.
That’s great — it only took two years to get this working on one platform. Here’s a thought: I imagine an even more secure way to go about things would be to NOT BUNDLE FUCKING FLASH IN THE FIRST PLACE.