After seeing the latest developments and improvements I still have several issues with the Automatic Windows Update and the windows update site.
1) patch distribution of patches is still not good enough.
I think that critical patches should be BUNDLED with the latest version of Windows Media, MSN Messenger, IE or even third party apps like Winzip and Adobe.
2) critical (remote exploitable or currently expoited) patches are not prioritized in the automated download process nor in the sequence, nor in download urgency in respect to other security patches
3) patches are not supported by scripts, group policies, .reg registry files, IPSEC rules or configuration files which the user installs with a simple click, in which protective features such as firewall, automatic updates can be turned on and features like RPC, files sharing or ports turned off.