Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model.
https://exchange.xforce.ibmcloud.com/vulnerabilities/12189
http://www.kb.cert.org/vuls/id/393292
http://sunsolve.sun.com/search/document.do?assetkey=1-26-55100-1