Understandably there are a lot of (well all of these posts) posts with a 'ha ha' attitude towards Macs and their users. Maybe that is deserved, maybe it isn't. I know a few Mac users that aren't computer savvy, but I can say the same thing about Windows users. I don't know any Mac users that think they are invincible to attacks, but apparently I'm in a big minority, or everyone just stereotypes.
But, from everything I gather, to get infected by this in OS X you STILL have to give it permission. It seems you have to accept an unsigned certificate with root privileges, then on top of that you have to give it your password for it to gain the root access it needs to do its thing.
So you have to click allow to an unsigned, and then also give it your password. Sure it can happen, but this isn't the fault of OS X, it is the user's fault. This same thing occurs on Windows, except perhaps without the need for a root password (XP?).