Matthew Dillon posted an extended description of how to run Firefox in a way that completely locks it away from your user account. As a side effect of this, the current crop of dports binaries has been updated.
A running description of activity related to DragonFly BSD.
Why simply not use jail?
Can the X session run as non-root on DragonFly to make that Firefox lock-away better?