I'm not quite that strict with my main work machine, but I am very careful about what I install on it, and typically my browsing is all work related or the occasional site likely to be very safe (BBC News at lunchtime, say).
I do want to point out that the OpenType issue you mentioned is really an OS bug rather than a browser one, though. It's a good demonstration that ultimately any OS facility that is used by browsers is a potential vulnerability, and crucially it's a cross-browser vulnerability and therefore more attractive to attackers.
What I'd really like is for all my platform software -- OS, browsers, language runtimes and the like -- to focus on stability and quality, with new features taking a secondary role. But I guess that doesn't sell new and shiny to customers^Wconsumers with an Internet-era attention span. :-(
I do want to point out that the OpenType issue you mentioned is really an OS bug rather than a browser one, though. It's a good demonstration that ultimately any OS facility that is used by browsers is a potential vulnerability, and crucially it's a cross-browser vulnerability and therefore more attractive to attackers.
What I'd really like is for all my platform software -- OS, browsers, language runtimes and the like -- to focus on stability and quality, with new features taking a secondary role. But I guess that doesn't sell new and shiny to customers^Wconsumers with an Internet-era attention span. :-(