Oracle put out a new version of Java this afternoon which resolves 42 bugs, 39 of which were security vulnerabilities. I just confirmed it is available in KSDU:
Facebook wasn't hacked two months ago because of a missing Windows patch -- it was hacked through a Java exploit.
If you think simply keeping OS security updates and AV on your managed machines is enough to stay secure, you're someday in for a rude awakening ;)
Inside KSDU, if you don't see Java 126.96.36.199 in your catalogs just yet, initiate a manual catalog refresh (KSDU -> Catalog -> Right click 'Master Catalog' and click Refresh).
If you are completely new to the module I have a post some additional screenshots and instructions here on how to deploy an earlier version of Java.