Windows Vista is fucking UGLY!.
This is like a bad cartoon caricature of OSX. It has no sleekness, it sacrifices functionality for "good looks" and manages to look very fugly doing it.
So, I'm thinking that Vista is going to be the nail in Microsoft's coffin. Especially if what's "under the hood" isn't much better than the new "non-feature" UI elements that they are touting then I really think that Windows Vista is not going to be remotely revolutionary. Especially considering that I really doubt that they will be making any substantial changes that will end spyware and adware from infecting the system.

I have my mother's powerbook setup so that she is not an administrative user. She virtually never needs an adminstrative password. There is no reason for her to be running on an administrative account, let alone actually running as root. Not to mention that the OSX Keychain has very sophisticated security in place that would prevent anyone from stealing her cached passwords and that any system changes require at least her password.

Of course user education is key, people need to understand that when connecting to their bank if they get an SSL certificate error they need to check and see what the issue is. Hrm, this certificate is for "ssl.mybank.com" and i'm connecting to "ssl2.mybank.com" but it's still signed by a root CA. That's probably not so bad. The certificate expired yesterday, probably not so bad. Wait, this certificate is for the right domain, is after the activation and before the expiration date but is NOT signed by a root certificate. Why do all of these errors produce exactly the same monotone error box? OSX does not do any better of a job — in fact it might be worse. Windows dispays a dialog, something like this probably:

In this case, we see three main categories, for a technical user like me who understands what each 3 mean — date host and CA — this is GOOD. However, OSX is not better. Here is the OSX dialog for the same error:

OSX is better in one regard, the "always trust this certificate" box.
This is good, it will cache the fingerprint of the certificate and alert you if it has changed. This is similar to the way that SSH works. It can't guarntee you that you are connecting to an uncomprimsed host — the first time — but on subsequent connection attempts it knows if the host key fingerprint has changed and this is a VERY good thing. Non-CA Certificates should operate in this matter and this tiny little checkbox is one step in the right direction.
Why is there no option for this in Mail.app?

Overall, I think that the handling of SSL could be much better in OSX.
Oh, and Vista is fugly.