Intego has reported the discovery of a new version of the Flashback Trojan which remains LOW RISK. The attack vector is via a Java applet and includes the use of a self signed certificate. Users can eliminate the risk by completely turning off Java in Safari which is recommended. Java is no longer a popular platform and is seldom used for most day to day general computing.  

If you need to use Java you can do the following:

• In /Applications/Utilities/Java Preferences.app disable "Allow User to grant permissions to content from an untrusted authority."

More information about hardening Java can be found here. 

All version of Flash Back are considered LOW RISK to NO RISK. If you update Java than you are completely protected. Currently the latest version of Snow Leopard and Lion are completely immune to Flashback Trojan.