You might have an older version of that script. I can see the script was updated on April-5th, and the documentation actually now says:
An unspecified vulnerability exists in the core RDBMS component for some versions of Oracle Database that allows malicious remote network traffic to affect the confidentiality,integrity, and availability of a target system.
Which is slightly different than what you quoted, and that is why I think you have an older (possibly FP prone) version of the script.
Can you make sure to run FSUPdate to get the latest FSL Content Package, and re-scan to confirm.
If you still see the issue, follow the instructions here (https://kc.mcafee.com/corporate/index?page=content&id=KB55996) to run FSDiag using the script (misc-oracle-core-rdbms-component-vuln-CVE-2010-0860.fasl3), and open a Service Request to address it.
I hope that helps!
Thanks for your reply, I checked and the FSL contect packages are up to date and have the same observation as what you specified above. What I originally quoted was the vulnerability details from the NIST site (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0860) when you click the CVE link in the Vulnerability Details from the scan. The NIST site lists the affected versions for this vulnerability which does not list our version - 10.2.0.3
I guess opening a Service Request would be the next step to have it addressed?