hi rugbyguy, mozilla will make adjustments to the default configuration in the next regular firefox version that will be released. in the meantime you could make the following adjustments yourself to disable cipher-suites susceptible to downgrade attacks: enter about:config into the firefox address bar (confirm the info message in case it shows up) & search for the preference named security.ssl3.dhe_rsa_aes_128_sha & security.ssl3.dhe_rsa_aes_256_sha. double-click it and change their value to false.

Yes, switching those two preferences to false seems to fix it according to this page: https://www.ssllabs.com/ssltest/viewMyClient.html

For those who like detailed recipes:

(1) In a new tab, type or paste about:config in the address bar and press Enter. Click the button promising to be careful.

(2) In the search box above the list, type or paste ssl3 and pause while the list is filtered

(3) Double-click the security.ssl3.dhe_rsa_aes_128_sha preference to switch it from true to false (this usually would be the first item on the list)

(4) Double-click the security.ssl3.dhe_rsa_aes_256_sha preference to switch it from true to false (this usually would be the second item on the list)

That's it, you can test again now.