The same issue happened in reverse earlier this year, with the SSL flaw that affected both OS X and iOS. In that case, iOS was fixed first as iOS 7.0.6 resolved the problem on a Friday, and OS X 10.9.2 took care of the same problem the following Tuesday.
Paget's blog contains a no holds barred attack on her former employer, questioning why Apple apparently doesn't see anything wrong with how it has handled these bug fixes. Is her attack on Apple warranted, or is she making mountains over molehills? You can check out some of her comments below.
Someone tell me I’m not crazy here. Apple preaches the virtues of having the same kernel (and a bunch of other operating system goop) shared between two platforms – but then only patches those platforms one at a time, leaving the entire userbase of the other platform exposed to known security vulnerabilities for weeks at a time?
In what world is this acceptable?"-Kristin Paget, former Apple employee
source: KristinPaget'sBlog via RedmondPie