Though browsers should really protect you against that already. ('Should', not 'would'.) Because SSL doesn't mean that there won't be malware on the site injected via some other means, ie by someone hijacking the server or by an otherwise malicious server.