Apple fixed the macOS vulnerability in a December security update.
A watering-hole attack leveraged a now-patched Apple vulnerability to infect website visitors with novel Mac malware.