Much discussion of Java security focuses on potential sources of vulnerability specific to the Java platform. These include:
Vulnerabilities in the sandboxing mechanism which allow untrusted bytecode to circumvent the restrictions imposed by the security manager
Vulnerabilities in the Java class library which an application relies upon for its security
Patches don't always come out fast enough and zero-day exploits happen frequently with Java.
I choose not to trust currency/money with this.