>From release 3.3.0 onward the library will not allow SSLv3 unless the user enables it with CyaSSL_SetMinVersion(). I will therefore close this bug with release 3.3.0.
Per upstream: We're working on phasing out SSL 3.0 support, as described here: http://wolfssl.com/yaSSL/Blog/Entries/2014/11/5_Deprecating_SSL_3.0_from_wolfSSL.html CyaSSL 3.3.0 implemented item #1 from that post, where a CyaSSL server using the CyaSSLv23_server_method() or client using CyaSSLv23_client_method(), will only downgrade to a minimum of TLS 1.0, unless the user specifically enables SSL 3.0 with CyaSSL_SetMinVersion(). Future releases will implement items #2 and #3.