There is a new OpenSSL vulnerability that has been discovered, which might be quite critical:
Rob Hulswit discovered a race condition in the OpenSSL TLS server
extension parsing code when used within a threaded server. A remote
attacker could trigger this flaw to cause a denial of service
or possibly execute arbitrary code with application privileges.
(CVE-2010-3864)
Be sure to update your servers with a patched version of OpenSSL.