A vulnerability in SSLv3 protocol (CVE-2014-3566) has been found that affects all SSLv3 traffic but not TLS traffic. Dell DRAC/iDRAC devices as well as CMC and PowerEdge-C BMC may report vulnerable for POODLE (Padding Oracle On Downgrade Legacy Encryption). This is because the web services built into these devices allows a client system to negotiate and fallback to the SSL protocols.
Until a firmware update is available for these devices, Dell recommends following the best practices as suggested by the browser vendors to disable SSLv3 support on client systems.
Update:
Firmware updates are available for the following devices (these links are provided for reference to release notes and may not be the latest firmware available)
iDRAC7/iDRAC8 2.15.10.10 - http://www.dell.com/support/home/us/en/04/Drivers/DriversDetails?driverId=VN754
iDRAC6 Monolithic 1.99 - http://www.dell.com/support/home/us/en/04/Drivers/DriversDetails?driverId=0F12K
iDRAC6 Modular 3.75 - http://www.dell.com/support/home/us/en/04/Drivers/DriversDetails?driverId=GR09H
CMC(M1000E) 5.01 - http://www.dell.com/support/home/us/en/04/Drivers/DriversDetails?driverId=J0J3N
CMC(FX) 1.20 - http://www.dell.com/support/home/us/en/04/Drivers/DriversDetails?driverId=JK17Y
CMC(VRTX) 2.0.1 - http://www.dell.com/support/home/us/en/04/Drivers/DriversDetails?driverId=K6FCR