Re: another reason as if we need one...
"And WP7 users were left high and dry with a certificate spoofing vulnerability and no update path"
That issue was actually with malicious certs - not the OS - and anyway WP7 was patched to block them:
https://technet.microsoft.com/en-us/library/security/2524375.aspx