A type of cryptographic flaw known as POODLE, first publicly revealed Oct. 14 in Secure Sockets Layer, has now been found in Transport Layer Security. Vendors have begun describing workarounds and issuing patches against the flaw. The risk from the PoODLE – which stands for Padding Oracle On Downgraded Legacy Encryption – flaw is that attackers can exploit the vulnerability to undercut TLS, which is designed to keep online communications between a client and server private. As a result, an attacker could read encrypted Internet communications as well as steal session cookies.”]
Source: https://www.databreachtoday.com/poodle-returns-to-bite-businesses-a-7659