http://www.theregister.co.uk/2011/09/19/beast_exploits_paypal_ssl/
Hackers seem to have cracked SSL...
in case you're worried, it's an old version of SSL (used by many sites still, though), and they managed to put into practice an exploit that was already known to work in theory. brilliant work, mostly to show that theoretical attacks are in fact dangerous.
additionally, faults in SSL can only be used to exploit MITM attacks, meaning you have to have the attacker on your network already (via another sploit/vuln).
example: if you're on a public wifi, people can MITM you, but if you're on a https connection, you're probably still safe (I wouldn't risk it anyhow), if the site in question uses this old SSL, and the hacker uses this exploit, then they can present a webpage that just looks like your bank login but instead they'll get to control everything.
at least, that's how I understand it.