I received a notice from PayPal with huge security changes coming in 2016: https://devblog.paypal.com/upcoming-security-changes-notice/
It sounds like I need TLS 1.2 support for security certificates on websites that use PayPal. I only have one SSL and HTTPS supported site and a test shows it is using TLS 1.0 (TLS 1.0 and 1.1 connections will soon be refused by PayPal). My site uses PayPal’s IPN service, so I will probably be forced to get an SSL for my other site as well.
It sounds like cURL will also need to be upgraded to version 7.34.0: https://github.com/paypal/TLS-update