I’m seeing more of these idiotic sites using SSL iframes on non-SSL pages, like they’re intentionally trying to teach people to not worry about the missing padlock in the status bar.
WE don’t know that your iframe is secure… we’re just supposed to take your word for it, or view source?
Just stop it, OK? It’s a bad thing to do.
