Hello GoodMorningDave,
This vulnerability is reported to affect every version of Bash since its inception in 1989. Patching and upgrading systems should always be a regular and planned operation for reasons such as this. ESX 4.x might be affected as it uses Bash.
For those of you running VMware, they have posted a blog here, and an advisory here. As things stand if you’re running VMware tools on top of Windows, such as vCenter for example, then you are not vulnerable. Also ESXi is not vulnerable as it uses ash shell via BusyBox instead of Bash. However any virtual appliances may well be vulnerable, including the vCenter Server Appliance. I would recommend keeping and eye on VMware KB 2090740 for the latest updates.