These critical updates should be applied expediently, as attacks are actively circulating
https://isc.sans.edu/diary/Oracle+Releases+Java+Security+Updates/14008
QUOTE: A short while ago, Oracle released updates for both Java 6 and Java 7 in response to the critical 0-Day vulnerabilities discussed earlier this week, as well as two other security issues. US-CERT has reported that applying Java 7 update 7 will solve the security issues as discussed at
http://www.kb.cert.org/vuls/id/636312
More information is available at
http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html