The only known mitigation from the Web server side is to use RC4 or allow only TLS 1.1/1.2. Due to weaknesses in RC4, this is not a valid mitigation and RC4 ciphers are disabled from 2.5.915.
CVE-2013-2566 RC4 - Plaintext-Recovery Issue (135497)
Changing TPAM to support only TLS 1.1 and 1.2 is another solution, however this change has consequences to those clients that do not run compatible browsers. Enhancement request number BFER 7896 (allow only TLS 1.1/1.2 to be valid HTTPS connection endpoints) has been submitted to Development for consideration in a future release of TPAM.