Safari Local Same Origin Policy Violation.

To continue with our quest upon understanding the same origin policy a little better, Gareth send me this proof of concept for Safari. It shows you your cookies from Amazon and it could be done on any domain for that matter. The rule here is that it only seems to work locally with the file:// pointer. That's why I placed it online as a download so you can download it to your desktop in order to try it out. Remember to save it as .html and call it through the file:// pointer to reconstruct the example. If anyone wants to shed some more light on the same origin policy, we encourage you to do so, because this is an exciting quest to understand Javascript security.Tested on: Windows Safari 3.02 (Latest beta)http://www.0x000000.com/hacks/crossdomain/hello_from_safari.phps