I think when you make an OS user friendly like windows is, your exposing yourself to more security holes. I disagree when you say linux hasn't been dissected ... its open source. Issues are discovered and solved faster.

I agree with SoggyBottom that both OS need to be locked down out of the box. If you want to discuss linux security history, then your going to have to look at sendmail and bind. Both have a long history of exploits.