See the problem is that — it's my perception, maybe I'm wrong — that ever since Oracle acquired Java, the quality has taken a sharp nosedive. I've been using Java since the 1.0 days and I can't remember when so many exploits were found in such a short amount of time.
I don't think it's the language or platform that's the problem, it's the new owner of the technology. Having used other Oracle products (i.e. tech they acquired and ruined), it doesn't surprise me in the least.