Microsoft patched all Windows versions of PowerPoint today addressing both a zero-day flaw [Microsoft.com] and 13 other privately reported security vulnerabilities. The vulnerability enabled attackers to take over client machines if a user opened a malformed powerpoint document or visited an evil website. The attacker would be able to execute code on the user s machine with the same level of permissions afforded to the logged on user. (If the user was logged on as an administrator, the evil code could execute as admin) Microsoft has NOT released a patch for PowerPoint on Mac.
Source: https://threatpost.com/inside-powerpoint-mega-patch-051209/72685/