This is just my opinion, but, I don’t think we can say Opera is more secure than IE. It may have fewer vulnerabilities known to the public, as it isn’t as much used as IE, but that won’t make it “safer”.
We could say it would be safer than IE, if both had the same market share, which in turn would make both of them, perhaps, equal targets for malware distribution and other types of malicious attacks, and Opera would provide a better protection. I think that’s the only situation we could truly say Opera is “safer”.
Is just like old Mac OS is safer than Windows. Of course, it is not as much used as Windows system is, which makes it the main target. Makes sense. Viruses and other type of attacks do exist for Mac OS and Linux, but not at the same scale as it happens with Windows, which is more than justifiable.
As Melih said, prevention is the way, either a vulnerability is known or not, and CIS with SafeSurf or CMF provide it. There are other ways to improve even further such prevention, by using tools such as Haute Secure, which in IE and Firefox case, will offer real time preventive measures, unlike Opera, since it won’t work with Opera.
There is also LinkScanner Pro, which will prevent exploits and other types of attacks. I think LinkScanner Pro would protect their users against such attack. If not all, most of them. Nothing protects 100%. Hence a layered protection is needed, IMHO.
As I also said before, people can use IE7 or IE8 in Windows Vista (Not sure about XP, as I never used it in all my life.) in Protected Mode (IEBlog | Microsoft Learn), which will lower IE7 and IE8 rights, which in turn will mitigate vulnerabilities. I know UAC is needed for that (unless I’m wrong), and most people will feel annoyed by the alerts, but it is possible to tweak UAC to show no alerts at all.
It is also possible to turn DEP for IE. Maybe one more layer for BO protection, along side SafeSurf or CMF.
The means are available. The problem is that, most people, are not aware of such defense mechanisms.
I have them implemented, and even not performing regular searches in IE7, other people do, and no single infections ever occured in this system through IE7, even with all vulnerabilities known and known to be exploited by hackers.
Will all this mean that someday, for some reason, this system won’t get hacked through IE? No idea. I hope not. But I also am not so sure about Opera and any other less used browser. Only other times would tell it, I guess.
We just need to protect ourselves the best way we can and hope to have some luck and never get hacked/infected.
Anyway, just my opinion.
Best regards