While I'll agree that that is true in general, in terms of a specific security exploitation, the best bet is to keep updated to the latest stable security release and you should pass unharmed. WordPress is no more or less secure than anything else. They do respond very quickly to security...