the POODLE SSL3.0 and TLSv1.0 bug is fixed in Release 8.4(7)26. I have testet this Image and can acknowledge the functionality.
According to my Information which received from TAC it should be also fixed in 9.0.4 and 9.1.6. But i had not tested these Images by myself.
You can quick check POODLE vulnerabilities at:
Let's make this even more exciting... 9.1.6 seems to have been pulled from the Download Center. Anyone have any idea why? It was up earlier but is gone now.
Also, I downloaded the SMP version before and it definitely did NOT have SMP in the filename... and it is working on my 5505 in the lab here.
EDIT: 1:36pm: and it's back online for all platforms!
In the release notes the bug can not be found as fixed for 9.1.6 :
In the bug article (https://tools.cisco.com/bugsearch/bug/CSCus08101 ) is said it would be fixed in 9.1.6, but 9.1.6 is released but it does not appear in the "known fixed releases" section ?