Macworld has reprinted an(other) interview of Dino Dai Zovi. He talks more about Mac (in)security, what users should do to be safe — regardless of OS, and acknowledges that Microsoft has made significant strides in security. In fact, he says Vista is more secure than OSX with respect to code quality:
I have found the code quality, at least in terms of security, to be much better overall in Vista than Mac OS X 10.4. It is obvious from observing affected components in security patches that Microsoft’s Security Development Lifecycle (SDL) has resulted in fewer vulnerabilities in newly-written code. I hope that more software vendors follow their lead in developing proactive software security development methodologies.
Somebody forgot to tell Joanna Rutkowska, who will demonstrate rootkit and encryption vulnerabilities in Vista later this summer.