Aditya K Sood at SecNiche found the flaw and posted the findings on Bugtraq. A Google spokesperson acknowledged the flaw and notes that clickjacking is a larger issue that affects all browsers, not just Google Chrome.
"The issue is tied to the way the Web and Web pages were designed to work, and there is no simple fix for any particular browser," the Google spokesperson said.
Google is working to fix the problem. The vulnerability also has affected Mozilla's Firefox 3.0.5.--Laurie Sullivan