Brian Mastenbrook an open source developer has discovered a security flaw in Safari which makes it vulnerable to “malicious websites”. According to Masterbrook the flaw allows files to be read from a users hard drive which could expose sensitive information like emails, passwords and cookies.

The issue is related to Safari’s handling of RSS feeds, OS X users are advised to use another application to read RSS by going to Preferences in Safari, selecting the RSS tab and changing the Default RSS reader to another application.

Safari for Windows is also affected and Masterbrook advises those users to use another browser for now.

Apple has acknowledged the vulnerability but offered no timeline for a fix.