After the recent Microsoft Internet explorer zero day announcement there comes an Adobe bulletin about a zero day in flash.
Although that bug is entirely in Microsoft’s code, the exploits currently seen “in the wild” rely on a Flash file to get things going. In the IE attacks flash is used by attackers to create the circumstances needed to make their exploit succeed. This newly announced flash exploit is unrelated. APSB14-13 is a bug in Flash itself that apparently allows remote code execution. That means that you could be infected just by viewing a Flash file in your browser. Adobe is not really saying what is wrong, but there has been a patch released. Adobe rates this patch Priority 1, Critical. So you may as well patch just as soon as you can.