If you go to your Site System Information and look for OpenSSL you may
find which version it is using (if it is using it at all). The sites I
look after were using older non-vulnerable versions. You can look it all
up here:
http://heartbleed.com/ In short, OpenSSL versions 1.0.1 through
1.0.1f are vulnerable and other versions are not. If your site is
vulnerable - contact your service provider.
Cliff