"This totally is a Microsoft catch up," said Storms of Adobe's new system, comparing it to Microsoft's monthly deployment recommendations of its Patch Tuesday updates. "It's almost the natural progression of any vendor that is doing regular security bulletins."
He also praised Adobe for the move, even though he said enterprise IT administrators would like more patching granularity from the San Jose, Calif.-based company.
"It would be more worthwhile for IT if there were more than one update today, so we would stack the Adobe bulletins and decide where to put resources," he said, referring to the two patches included in Monday's update, one obviously more important than the other.
"Nonetheless it is a nice, quick ranking that lets me take one look to see whether the Adobe update addresses a zero-day [and if it does not], I can probably wait a day to assign resources to investigate," Storms added.," Storms added.
Adobe credited two Google security researchers, Tavis Ormandy, and Fermin Serna, with reporting the Flash bugs.
Yesterday, when Google patched Chrome 17, it also refreshed the Flash Player bundled with the browser to include the patches Adobe issued to others today.
The patched versions of Flash Player for Windows, Mac, Linux and Solaris can be downloaded from Adobe's website. Alternately, users can run Flash's update tool or wait for the software to prompt them that a new version is available.
Android users can retrieve the new version from the Android Market.
Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at @gkeizer, on Google+, or subscribe to Gregg's RSS feed. His e-mail address is firstname.lastname@example.org. See more articles by Gregg Keizer. Read more about security in Computerworld's Security Topic Center.