Apple has released an update to Java 6 SE. This update comes shortly after employee systems at Apple were discovered to harbor malware injected by a Java vulnerability.
Courtesy of Apple
This update only corrects the security issue in Java 6 SE. If you're running Java 7, you'll need to contact Oracle to obtain the latest release.
The Java 6 SE security update includes a malware detector that runs during the installation process. If the malware detector discovers any of the currently known Java-based malware apps, you will be notified. Otherwise, you won't see any evidence that the malware detector was run.
"About Java for Mac OS X v10.6 Update 13
This release updates the Apple-provided system Java SE 6 to version 1.6.0_41 for Mac OS X v10.6.
On systems that have not already installed Java for Mac OS X 10.6 update 9 or later, this update will configure web browsers to not automatically run Java applets. You may re-enable Java applets by clicking the region labeled "Inactive plug-in" on a webpage. If no applets have been run for an extended period of time, the Java web plug-in will deactivate."
The update is available from the Apple Software Update service (Apple menu, Software Update). You can also download it directly from Apple's web site.