I guess it had to happen. The team at OpenBSD has started to dissect OpenSSL following the Heartbleed vulnerability and have created a fork – LibreSSL.
The following GoogleTechTalk is a few years old now, but still very relevant. It really is surprising how many compromises occur that can be attributed to well known attack vectors. In fact , the OWASP Top 10 has remained constant for the past two years. Go figure!