Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install widgets via Safari without prompting the user, a different vulnerability than CVE-2005-1933.
http://www.securityfocus.com/bid/13694
http://lists.apple.com/archives/security-announce/2005/May/msg00004.html