Well, to be honest, i am an undoubted Firefox fan and was very surprised to discover this statement on ZDNET.

You can go and download a new installation of Firefox 3.0.4, because these 11 vulnerabilities, 4 of which highly critical are already fixed. Otherwise you might be exposed to code injection, information stealing or (denial-of-service) attacks.

The four critical vulnerabilities are the following:

MFSA 2008-55 Crash and remote code execution in nsFrameManager.

MFSA 2008-54 Buffer overflow in http-index-format parser.

MFSA 2008-53 XSS and JavaScript privilege escalation via session restore.

MFSA 2008-52 Crashes with evidence of memory corruption.

There are also other fixes included in the new version of Firefox 3.0.4, which are:

MFSA 2008-58 Parsing error in E4X default namespace

MFSA 2008-57 -moz-binding property bypasses security checks on codebase principals

MFSA 2008-56 nsXMLHttpRequest::NotifyEventListeners() same-origin violation

MFSA 2008-51 file: URIs inherit chrome privileges when opened from chrome

MFSA 2008-47 Information stealing via local shortcut files