Adobe encourages the responsible disclosure of security vulnerabilities through the Product Security Incident Response Team web form.

Adobe would like to thank the following individuals and organizations for responsibly disclosing a security vulnerability for an Adobe website or online service, and for working with Adobe to help protect our customers. To be eligible for this list, you must be the first person to responsibly disclose the issue, and you must allow us a reasonable amount of time to address the issue before publishing the information. 

Individuals and organizations who have responsibly disclosed vulnerabilities in an Adobe desktop product are referenced in the “Acknowledgments” section of each Security Bulletin.