Not quite sure what you're expecting. Only disclosed on Thursday and still unpatched. What, is this slovenly or something, or should it have been patched, and then there would be no story. Perhaps a list of the booby trapped videos would be more helpful, so we all know what to avoid, or should we just uninstall Shockwave and totally disconnect from the internet, until either Shockwave is patched, or the booby trapped videos are removed, whichever is quicker.
I still don't understand why your focusing on the software and vendor for things that aren't under their control, if in theory Shockwave or any type of software could be coded to prevent every single permutable threat, then every one would be complaining about bloat, and your home pc/laptop/netbook/tablet alone would need to run it's own datacentre just to function. Not exactly the sort of thing you can just tuck away in the corner of your room really.