Recently a BIND bug is detected. See BIND BUG (http://www.isc.org/products/BIND/bind-security.html) now a package is released. Haven't installed it yet but I thought it is worth to mention.

DOWNLOAD THE UPDATE (http://www.solarspeed.net/freebies/RaQ34-Bind-8.3.3.pkg)

I installed that patch the other day. Solarspeed are producing some very nice little packages which help to bridge the gap with Cobalt's 'punctual' updates and patches

I had no problems installing the patch also.

But bear in mind that, until Sun comes out with an advisory saying otherwise, this doesn't fix the main problem highlighted in the vulnerability. It just fixed one part, which is the binaries from isc.org, there are very likely to be other binaries linked against the offending modules (like the zlib vulnerability a while back) and until Sun comes out with more information about what exactly is linked against the old modules, we're in the dark as to the extent of the problem. For example, I've seen it speculated that SENDMAIL may be vulnerable to this bug.