Attack suites have been compromising FireFox users for years using this same general
modus operandi, a multi-pronged attack on secondary stuff like Flash, Reader, WinZip, RealPlayer, Java and other stuff that can be called up via the browser. Welcome to, like, 2007.
Actually, if FireFox ever goes the way of IE, and gets a Protected Mode, you'd be considerably safer from this sort of thing, since PM stops it at this stage:
Maybe FF 4.x will bring some sort of sandboxing to the table. In the meanwhile, if you prefer FF, try running it in Sandboxie. And of course, uninstall stuff you don't use, check the rest with Secunia PSI, fully arm your Data Execution Prevention, enable SEHOP, and keep UAC enabled.