The vulnerability only affects systems where the X server is configured so that it has root privileges even when run by a non-privileged user. XQuartz is not normally configured that way, or with any unusual privileges. It just runs in your normal user account with your normal privileges.