An unpatched flaw (yes, there are many) in Microsoft’s Internet Explorer may put users of the Google Desktop Search at risk. This flaw has to do with the way IE handles (or mishandles) CSS. A malicious web page can inject code into a page which allows it to execute on a remote machine.
There is currently no fix available from Microsoft. And while no known use of this exploit has been used, there has been a proof of concept posted on the net.
Those of you who (for whatever reason) still use Internet Explorer, it is recommended that you disable JavaScript and/or switch to a better browser. Personally, I’d block IE in the firewall. 