Some ideas on how Microsoft could do better with their handling of security were written out here in Brian Sullivan's webblog. Some good thoughts on how to deal with the problem currently, hopefully the "fix the problems for the next release" were implied :)
Ideas like making patch CDs freely available at computers stores etc would be useful, as well as having OEMs release fully patched versions, as that would have made the latest eXPerience Silverstr had a lot less painful.