I have problem with tinymce in symfony 1.4 prod. Any Iframe give me a blank windows with error: "SecurityError: Blocked a frame with origin "[url]" from accessing a cross-origin frame."
But on dev works fine !!!
Based on your description it appears as if you or a script is trying to interact with a resource from a different origin. My guess is that you are using different protocols (e.g. https) on the production and development environments. Take a look at this page about Same-origin policy for more detailed information.
Related questions have been asked and answered before on StackOverflow:
Also, it is recommended to upgrade your Symfony installation to a version that is maintained. Symfony 1.4 has not received bug or security fixes for multiple years now. SensioLabs has even shut down the Symfony 1 infrastructure (SVN and plugins) last February.