Dropbox told about vulnerability in November 2013, only fixed it when the media showed interest - Graham Cluley
And likely Dropbox still wonders why security aware people may not trust them with their sensitive information...
I stopped using them for anything that matters long ago.