CVE 2015-2742
Mozilla Firefox before 39.0 on OS X includes native key press information during the logging of crashes, which allows remote attackers to obtain sensitive information by leveraging access to a crash-reporting data stream.
See the 
CVE page on Mitre.org
for more details.
