The vulnerability is in particular versions of BASH used by UNIX based servers. We have immediately applied the security recommendations as published by CERT and have closed this issue.
We have noticed activity that is trying to exploit this weakness and urge other web providers to immediately patch their systems.
As you know, we take systems security seriously, and are happy to help with any further questions you might have. Email me directly at firstname.lastname@example.org.
Craig Sullivan Founder, launch.ly