That's pretty cool
I vaguely wonder how many people haven't yet updated their iOS to the version that is patched. Apple has good form in this, and they support relatively old devices.
I'd say this is another cautionary tale about proprietary systems, but then again Heartbleed was in OpenSSL. And by the way, I've always found suspicious that such a vulnerability happened to be submitted on December 31, when everybody was too drunk to notice.