Hey folks. A security company recently put out a paper describing vulnerabilities with the steam:// browser protocol. Essentially, people can use it to launch executables without you knowing. They recommend disabling it until something is done to fix it.

http://revuln.com/files/ReVuln_Steam_Browser_Protocol_Insecurity.pdf