As far as I understand it, the browser falls back to the old SSL3 protocol which makes it open for attack. I presume (I'm no security expert) that paypal not allowing communication with SSL3 will simply stop old browser/connections that are not supporting the TLS and at this point I think nearly all will. So I don't think you'll see any difference when paypal turn off SSL3.
↧