Hi essexboy,
We are talking about javascript and that is a completely different script as java is (although related in some sense qua development). I have not spotted a website without some javascript there, so also some hidden possibilty for script-danger! Anyway it is a good idea to minimalize on services that one does not need on a computer because that would also make the attack surface smaller, there I agree with you.
Main crux of the malcode problem is javascript, just leaf through all the exploits given at unmasked parasites and you get 100 out of 100, why else use jsunpack to analyze - it is analyzing javascript, and at wepawet you analyze again javascript!. What to do on a page with an ICF score of 248 - javascript links here 44, inline styles 79, inline events 125, onclick 61, onsubmit 1, onchange 3, onmouseout 29, onmouseover 29, onkeyup 1, onselect 1, and well that is excactly the page you are watching at the moment, and there are pages with scores of thousands. I know this page also known as forum.avast.com is secure at this moment in time and suspect that to be in the coming future, but could you know that for certain for any page you'd visit with your browser?
polonus