Google and Yahoo are using domainkeys to verify paypal and ebay email. This is a good thing, but it's really late. Still, since paypal and ebay are amongst the most phished services, this has the potential to do a lot of good. Now, if only banks would start using it.
In the past few months it's been an increasing trend to have sites ask you for your username and password from some service. I've lamented about this in the past regarding youtube and embedding videos, and it's shoved in your face on facebook.
Though, admittedly, youtube has to store your password for some reason, while apparently facebook only uses it then discards it.
Still, I couldn't quite put my finger on why it was a bad idea. Apparently it's in every social networking site, too.