It was reported that nsSSL3Ciphers preference is not enforced server side, this allows for a potential downgrade attack to take place.