OK!
So I have no idea if this is the right way to do it but if that key only exists on systems with the hotfix installed then we can do this:
exists keys "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component Based Servicing\ApplicabilityEvaluationCache\Package_for_KB3046481~31bf3856ad364e35~amd64~~6.3.1.0" of (x32 registries;x64 registries)
Now keep in mind – relevance isn’t magic. This doesn’t tell if the hotfix is installed it just returns true if that key is there.
As long as that key is only there when the hotfix is installed then the relevance works. If the key is sometimes there when the hotfix is installed (or if the hotfix fails) then our relevance may return true after a failed install.
So i found this page: https://blogs.technet.microsoft.com/tip_of_the_day/2015/10/12/tip-of-the-day-cbs-servicing-states-chart-refresher/
Which tells us the meanings of applicability and current states. It looks like a value of 112 (70 in hex) means its installed. So we can change our relevance:
exists values "CurrentState" whose (it = 112) of keys "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component Based Servicing\ApplicabilityEvaluationCache\Package_for_KB3046481~31bf3856ad364e35~amd64~~6.3.1.0" of (x32 registries;x64 registries)
It looks like the machine you are looking at is in a, “Install Pending” state which means it will install on reboot.
If you run the fixlet with the above relevance it will show as failed because after running the install, the hotfix is pending, it’s not installed. So we need to tell BigFix to not check for success until after a reboot has occured.
We can do that by adding, “action requires restart” at the end of our actionscript.
So our relevance is:
(windows of operating system) and (exists values "CurrentState" whose (it = 112) of keys "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component Based Servicing\ApplicabilityEvaluationCache\Package_for_KB3046481~31bf3856ad364e35~amd64~~6.3.1.0" of (x32 registries;x64 registries))
and our actionscript is
prefetch 728b37b66626ce5031dee8700fb644402c8d5737 sha1:728b37b66626ce5031dee8700fb644402c8d5737 size:407196 http://BDOWSPBGFX:52311/Uploads/728b37b66626ce5031dee8700fb644402c8d5737/Windows8.1-KB3046481-x64.msu.tmp sha256:dc5ed549442076b39837006e078dc54117f1b98ef712e1dd65441f9732382444
extract 728b37b66626ce5031dee8700fb644402c8d5737
waithidden wusa.exe "__Download\Windows8.1-KB3046481-x64.msu" /quiet /norestart
action requires restart
This itself will not restart the computer (unless you’re pushing out restarts to pending restart machines).
I have not tested any of this but let me know if you have issues or questions