I think people have misunderstood what I was trying to say in my earlier post. I am in no way advocating that we should ignore security flaws, I just think these companies should be careful how they word these public statements.
I read an article a few months ago (can't remember where) that basically concluded that virus writers are getting lazy. Instead of searching for security holes themselves, they wait for a security company to announce that they have found a vulnerability, then attack it.
That is why I commented on the fact that infections were being reported after this announcement was made.