Yep they do.

Base reward is 500$ but if ones find is rated as critical/severe/clever the reward is raised to 1337$. :)

They are not the only ones nor the pay rate is that awesome but still, more software companies engaging into such rewards for vulnerabilities is nothing but good news, since slowly, this might turn into an industry standard.