Assigned to the pile of December 2013's security updates is a serious flaw that could potentially give access to your entire company's stored documents.
This is an important update to apply if your company is using Office 2013 desktop version and SharePoint for Adallom blog, anyone can write and distribute a fake Office 365 authentication token that gives full access to SharePoint resources. All of Office 2013 Desktop is vulnerable. PowerPoint, Excel, OneNote, Word – all of it. And, since SkyDrive Pro is, in actuality, a SharePoint Online site, this same vulnerability could give access to the entire contents of your synched files and folders.. Detailed on the
Make sure to patch! And, read through the Adallom blog to get a full understanding of the problem: Severe Office 365 Token Disclosure Vulnerability – Research and Analysis