What kind of weight do you put in different browser defenses?
– Process separation? Plugin isolation?
– Origin header support?
– X-Frame-Options, X-XSS-Protection? Built-in reflected XSS protection? NoScript?
– Automatic patching? Anti-virus? Safe browsing lists?
Instead of creating a matrix to compare browsers, versions, and operating systems try adopting the Harry Callahan Postulate:
Launch your browser. Open one tab for your web-based e-mail, another for your online bank. Login to both. Then click on one of the shortened links below. Being as this is the world wide web, the most dangerous web in the world, and would blow your data clean apart, you’ve got to ask yourself one question: Do I feel lucky?
Well, do ya punk?
If you don’t feel safe, then you should reconsider your browsing habits or at least make an effort to bring your computer’s patch level up to date.