I just came across a slashdot-article, in which Halvar Flake
presents how a comparison of unpatched vs patched libraries
can reveal easily all information needed to develop an exploit.
In particular he applies ida and sabre (... ).
Watch this movie in order to understand what I am talking about.