We do not use LANDesk on our Mac's at this time, but my guess is that a) a reboot is needed before the patch is fully implemented and/or a follow up security scan is needed on the Mac
I've rebooted multiple times and even gave it a few more days to settle but the same patches are still being reflected as needed on the system. This wouldn't be a big deal if the patches were actually being applied but none of the patches have actually been installed.
I just tried repairing those 3 vulnerabilities listed in your screen shot as a scheduled push task with some beta code. It applied the patches successfully. What behavior do you see on the client machine when you do the repair?
Because you are repairing a vulnerability that requires a reboot it should prompt the user. Once they click reboot LDMS sends a successful task status back the core and initiates a logout. Once logged out Apple Update takes over and applies the patches. So if the user interrupts the process after clicking reboot then you would have a successful task status but no patches applied. Presuming that the logout is not interrupted then after Apple Update finishes applying patches it will reboot the machine and then when the user logs in vulscan will run again and report to the core that the machine is no longer vulnerable for the applied patches.
If you are not seeing the dialog prompt on the agent machine then I would check your alternate update server setting and server. If that seems good then you might want to contact support.
Thanks for the reply. Yes we get the prompt (Defer or Continue) and after selecting continue the 3rd party updates are installed successfully but the apple updates are never downloaded or initated.
FYI: I've seen this process work as desigened on 10.7 and 10.8 systems but not 10.6.