I had been watching Diaspora since before its first release. It is an excellent idea, and I almost couldn't bear my anticipation for a private, secure social networking system.
Patrick McKenzie produced an excellent article that documents some egregious security errors in Diaspora. He points out some good basics that every web developer should be aware of (authentication v. authorization, input sanitizing, and more).
Go check it out!