Adobe has released Version 23.0.0.205 of Adobe Flash Player for Microsoft Windows, Macintosh and Chrome as well as Version 11.2.202.643 for Linux.
The update addresses an exploit for CVE-2016-7855 exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10.
Warning: Although Adobe suggests downloading the update from the Adobe Flash Player Download Center, that link includes a pre-checked option to install unnecessary extras, such as McAfee Scan Plus or Google Drive. If you use the download center, uncheck any unnecessary extras.
Non-IE Plugin (Opera, Firefox, Etc.): http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_23_plugin.exe
Flash Player For Internet Explorer, Windows 7 and earlier: http://download.macromedia.com/get/flashplayer/current/licensing/win/install_flash_player_23_active_x.exe
Internet Explorer and Microsoft Edge: Windows Server 2012, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1 and Windows 10: Adobe Flash Player is now a security bulletin rather than a security advisory and is distributed via the normal Windows Update channel.
Flash Player Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe
Adobe AIR: http://get.adobe.com/air/
Security Bulletin (https://helpx.adobe.com/security/products/flash-player/apsb16-36.html)
Release Notes: Flash Player® 23 AIR® 23 (https://helpx.adobe.com/flash-player/release-note/fp_23_air_23_release_notes.html)
Update for Microsoft Edge and IE11: MS16-141: Security update for Adobe Flash Player: October 27, 2016 (https://support.microsoft.com/en-us/kb/3201860)