Apple iOS before 8.1.1 and OS X before 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote attackers to obtain sensitive information via unspecified vectors.
lists.apple.com/archives/security-announce/2014/Nov/msg00000.html
lists.apple.com/archives/security-announce/2014/Nov/msg00001.html
secunia.com/advisories/62503
secunia.com/advisories/62504
www.securityfocus.com/bid/71135
www.securitytracker.com/id/1031230
exchange.xforce.ibmcloud.com/vulnerabilities/98782
support.apple.com/en-us/HT204418
support.apple.com/en-us/HT204419
support.apple.com/en-us/HT6590
support.apple.com/en-us/HT6591