Oracle released Security Alert CVE-2014-0160 for the OpenSSL Heartbleed vulnerability on April 18, 2014. This Security Alert addresses a vulnerability which affects multiple OpenSSL versions implemented by multiple vendors in multiple products.
See http://www.oracle.com/technetwork/topics/security/alert-cve-2014-0160-2190703.html for the list of affected Oracle products and patch availability information. Oracle strongly recommends applying the patches as soon as possible.