I recently read an article regarding the vast majority of sites using SSL are still vulnerable to a BEAST attack despite the fact that this vulnerability was discovered some time ago (LINK). I tested my own site on DreamHost and failed the BEAST test:
BEAST attack Vulnerable INSECURE (more info)
Why hasn’t DreamHost upgraded to TLS 1.1 or 1.2 and when can DreamHost customers expect this vulnerability to be addressed?
More info regarding the BEAST attack here.