I am well aware of these attacks as I am actively involved in discussions at CloudFlare about how we best protect our customers. Clearly browser support for things like AES GCM and TLS 1.2 is the limiting factor.

However, TLS is not only used between browser and web server. We can use better ciphers in situations where both ends can be controlled.