If he's using an up-to-date browser and a firewall it feels like the practical risk is relatively low.

What remote exploits are you concerned about in that scenario? Where it would affect 10.9, but not 10.16.

I'm not doubting they exist, but I'm really curious the threat scenario that would apply here, and how likely you think that might be.