According to security researcher Brian Krebs, the flaw centres on a cross-site scripting bug that Chrome has already patched around.
The flaw, he asserts, exists in Flash Player version 10.3.181.16 and earlier for Windows, Mac, Linux and Solaris – Adobe, he says, recommends users update to version 10.3.181.22 (on Internet Explorer, the latest, patched version is 10.3.181.23).
Interestingly, Krebs adds that Adobe is reporting it is still investigating whether the flaw is exploitable in Adobe Reader and Acrobat X (10.0.2) and earlier 10.x and 9.x versions of Adobe Reader and Acrobat for Windows and Mac operating systems.
"Remember that if you use Internet Explorer in addition to other browsers, you will need to apply this update twice: Once to install the Flash Active X plugin for IE, and again to update other browsers, such as Firefox and Opera", he says in his weekend security blog.
Krebs adds that updates are available by browsing with the appropriate browser to the Flash player download centre.
"Bear in mind that updating via the download centre involves installing Adobe's download manager, which may try to foist additional software", he warns.
"If you'd prefer to update manually, the direct installers for Windows are available [here]. If you run into problems installing this update, you'll want to uninstall previous versions of Flash Player and then try again", he noted.