Oracle apparently knew about the current Java exploit in April

According to this article Oracle has known about the current 0-day exploit since April but have not acted to patch it.

I would seriously consider trusting mission critical data to software from a company that apparently have such a lax attitude towards security flaws as Oracle has displayed in this case.