How does vaadin avoid clickjacking

Hi Guys,

We recently has a security consultant take a look at our application built using vaadin. We are still on version 6.
One of the advice given was te implement “X-Frame-Options” in the header.
My question is, considering vaadin pays attention to security, how does vaadin cope with this situation?
I mean there is a reason they would allow the application te be accessible through an iFrame.
Implementing X-Frame-Options would be more secure, but does vaadin framework already have a way of dealing with this internal?