Vulnerabilities in Java7 were discovered recently and exploits for the vulnerabilities are not only in the wild, source code to exploit the most recently found exploits was on sale last weekend on a number of hacker sites.
VXers exploit users' confusion over Java to punt fake update â€¢ The Register
If you have Java7 installed on your box, you should update to 7.11 as soon as possible so you don't stumble accidentally onto something infected. (If you visit places like Tubestack you WILL get exploited )
Download Free Java Software
Better off just disabling Java in your browser if you absolutely need Java, otherwise just uninstall altogether. Java is a piece of shit.