[google-serf]

Not quite. iphone enforces sig verification on write to the flash. A modern iPhone does not allow arbitrary base flash images to be written. Modern Jailbreak relies on kernel and user mode exploitation. Server auth bypass on SecureTransport TLS cannot lead to RCE via trojanized updates.

[handsomeransoms]

I think he's referring to app updates, not iOS updates. Also, desktop Mac OS X.

[ben1040]

App installs and updates are still subject to code signing, and unless you jailbroke the device by some other means, any code that would be able to mess with the OS' public keys used to to authenticate the signatures would have to be signed itself and presumably would have to come in the form of a signed OS update.

[sneak]

Sparkle Framework.

[lstamour]

Though ... if anywhere uses Safari on a regular basis and thus trusts their SSL to it, that would be Apple, yes? ;-)