Most of the follow-up information that I have seen implies that the US-CERT Alert applies only to Oracle JAVA Version 7. Oracle is suppose to be working on a fix, but no release date has been stated. JAVA Version 6 was manufactured by Sun Microsystems prior to Oracle acquiring Sun Microsystems.
So for the moment I'm leaving my JAVA Version 6 enabled.
Q & A: http://krebsonsecurity.com/2013/01/w...-java-exploit/