Hi kubecj,
You have turned this into one of your specialism, haven't you? Chapeau! Seen to the 200% increase recently in malicious vectors launched from infected websites, what avast is doing here is really very impressive.
I from my end started some discussion an initiative here to get more interest for the implementation of CSP, also known as Content Security Policy, a security policy for both browsers (IE, Fx, etc.) and web application(s) to set the framework wherein both browser and service can communicate secure, so third parties have no chance of breaking in.
Re:
http://forums.mozillazine.org/viewtopic.php?f=48&t=1073125Just have to see who will jump on the bandwagon with CSP, but until the time the initiative is adhered to on a larger scale we will depend on what avast is doing here and also use script/request/preference blockers like NoScript, RequestPolicy and PrefSwitch,
polonus