Not quite sure if this is possible but we are seeing POODLE vulnerability for the traffic between ESXi hosts and vCenter (5.1). Googled around a bit and it seems VMware doesn't provide any fix for it specifically, but rather just advise to turn SSLv3 off in browser, which does not apply to our case. Strange part is, we have 2 clusters, each has a vCenter server and a set of ESXi hosts, yet for one of the clusters, only 1 of the host is tripping the alarm. I am really hoping there is something that can be configured, possibly on the host level to force TLS communication instead.