Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
https://helpx.adobe.com/security/products/flash-player/apsb18-05.html
https://access.redhat.com/errata/RHSA-2018:0520