I noticed that 3DES now is in fact considered weak with the latest info avaiable.
But websites that promote 3DES as the prefered encryption methode over AES128 and AES256 should not be able to get a A- rating.
I see 2 concerns here:
1. If the preference order is listing weaker ciphers first it is a sign of poor judgement in terms of security.
2. If the website still promotes 3DES as cipher it should also lower the rating.
And I fear there will be other websites that use weak mechaniscmes and still get a A- rating.