Google has released a Browser Security Handbook online. It can be found here.
thinkmiddleware.com usually focuses on server-side topics, but browsers and their interaction with J2EE-based web applications is certainly relevant. In examples/experiments presented on thinkmiddleware.com, Firefox is used almost exclusively–the Handbook covers this browser.
The Slashdot discussion can be found here.