Hot-ish off the press at Symantec is this article about Acrobat Reader:[indent]
We have received reports of a significant problem relating to Adobe Acrobat files and Cross Site Scripting (XSS). A weakness was discovered in the way that the Adobe Reader browser plugin can be made to execute JavaScript code on the client side.
[/indent]Adobe’s Security Advisory article is here, and you can download Adobe Reader 8.0 here