In response to my own question.
The answers given for both questions are correct, it's just that the way they are phrased is misleading. Notice that the correct answer to question 10 doesn't mention the
word 'browser'. The other answers all do except for the last answer reads well but is obviously wrong.
Amanda
Just in case you haven't seen it here's question 10 in full:
10. Which statement is true?
Classes loaded into a browser from the local network are trusted.
Classes loaded into a browser from remote sources are trusted if they are signed.
Classes loaded into a browser from remote sources are trusted if they are in a signed jarfile.
Classes loaded from a jarfile on a remote source can sometimes be trusted even if the jarfile is unsigned.
Classes loaded from a signed jarfile are trusted if the public key associated with the jarfile's signature is marked as trusted in the keystore.