It always ceases to amaze me
When the blended vuln in Safari and IE on Windows was discovered, Microsoft's recommendation was for users to not use Safari. A better workaround was to change your default downloads directory. Problem gone. Simple solution.
El Reg hasn't posted any of the many workarounds available for the ARD problem. TUAW has a few solutions here: http://www.tuaw.com/2008/06/19/ardagent-setuid-allows-root-access-but-theres-an-easy-fix/
I'd guess an awful lot of people out there don't need to be managed by an admin, so can safely stop this problem in its tracks until Apple release a fix.
No one is reporting the solution though, only the problem.