Reading the notes from the advisory, I see its almost all related to web client usage-- applets and webstart. Most people already know better than to trust this stuff, and I think its been a while since Java applets were turned on by default on PCs (at least I hope so...).
Java on the server side is much more secure. I would choose it over PHP for most tasks that require good security.