New Java vulnerability allows attacker to escape sandbox and execute arbitrary code on affected systems.