Microsoft warns about Windows Safari Bug

Microsoft warns about a bug in Apple's Safari-browser that can flood the desktop with harmful executables. Furthermore, malware can be installed by combining the leak with an unsolved issue with Internet Explorer.
 

It is possible for a rogue website to litter the user's Desktop (Windows) or Downloads directory (~/Downloads/ in OSX). This can happen because the Safari browser cannot be configured to obtain the user's permission before it downloads a resource. Safari downloads the resource without the user's consent and places it in a default location (unless changed).