Just a heads up really. I had companieshouse.gov.uk tell us that xombrero was vulnerable to poodle and not allow us to continue our submission, though they let us fill half of it out. The poodle checking websites also say it is vulnerable but I believe if I remember rightly from the webkit list that it may be because it was fixed in a different way than they expect (SSL3 support removal).
I have re-instated the following to my .xombrero.conf which fixes the companies house DOS!! which potentially makes them money through fines. I'd add a grrr but I am numb to this kind of thing from them now!!. gnutls_priority_string = NORMAL:-VERS-SSL3.0 I guess no other site would do anything but warn users, but who knows?
