The Mac needs to be as secure as the iPhone. The good news is Apple already has the tools. The bad news is they are forcing developers to use the wrong ones.
He argues that Mac OS X should use certificate revocation, not just sandboxing, for better security. It sounds like a great idea.