It is not advised to serve both secure (HTTPS] and non-secure (HTTP) versions of the same content.

There are several reasons for this. One reason would be duplicate content. Googlebot & other search engines see these as seperate pages, but they will both have the same content.

Also - depending on your server config, once you migrate to HTTPS the server uses SNI. It is the SNI that older browsers cannot support.

Older browsers need to be pushed off the web. They are vulnerable to hacks & viruses.
The web is moving forward with security efforts to make it safer for all of us. Let the past die off.

all certificates do not support android versions <4.4.3?

i thought android started SNI support with honeycomb (v3.0 which is now 7 years old):
https://en.wikipedia.org/wiki/Android_version_history#Android_3.0_Honeycomb_(API_11)

Android versions < 4.4.3 still bring me visitors how can I do for these versions to serve http instead of https?

perhaps you could configure a subdomain with another virtual host listening on a different port that is configured to use a supported certificate.
you could redirect old androids to the subdomain and should redirect new androids and other user agents requesting the old subdomain to the main secure hostname.
that would solve the duplicate content problem and provide optimal secure protocols for all visitors.