In general, Javascript is not a security risk from a malware (installing crap onto a system) standpoint. Some browsers in the past did have some Javascript holes that were exploited, but I haven't heard of much in this regard recently. The more common Javascript problems are caused by cross site scripting exploits, leading to potential information hijacking.