I’ve seen a mess of concerns about this particular issue so I thought I’d make a post on the subject:
Basically, Apple has decided to implement App Transport Security (ATS) to better protect app users. This means that communication to insecure resources and services will result in errors for iOS 9. Android and earlier versions of iOS are not affected by this.
For example, ng-cordova-oauth will not work on iOS out of the box due to this security policy. The oauth flow will lead to a blank screen.
This security policy can be altered to allow for all insecure services or certain insecure services by altering the applications info.plist file.
This is all documented and demonstrated in my article / video.