Isn't the record of infinite vulnerabilities in Flash widely known by everybody?

So if it is so widely known, why no action was taken by anyone to stop them from undermining Internets security?

Also not everyone knows how bad Flash is for their security, only few geeks care about reading cve-s. So until it goes to mainstream media not enough people will care.

Apple dropped it and it was a large, if not the largest, reason for work on sandboxing plugins.

IE: 491 code exploit vulnerabilities

Flash: 382 code exploit vulnerabilities.

Looks like Flash has a way to go.