User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.0.1) Gecko/2008070208 Firefox/3.0.1 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.0.1) Gecko/2008070208 Firefox/3.0.1 We would like to see Firefox implement restricted attribute on Iframes. For more information on what we mean, please check out http://blogs.msdn.com/ie/archive/2008/01/18/using-frames-more-securely.aspx For detailed design on how Internet Explorer provides this, please check: http://msdn.microsoft.com/en-us/library/ms534622(VS.85).aspx Reproducible: Always Steps to Reproduce: 1. 2. 3.

I've since learned that the HTML 5 working draft has a similar capability, except it's exposed via a sandbox attribute on the iframe, instead of a security attribute as it's currently done in IE. For details, check out: http://www.whatwg.org/specs/web-apps/current-work/#attr-iframe-sandbox