"Securing endpoint systems by locking them down using complex software brings back memories of another era, where business computers were once used for business applications only - and businesses retained control over their assets and data."
This is an excellent article that talks about how businesses should go back to basics and make their corporate PCs more corporate and less personal. From restricting which software is installed, to filling USB ports with glue. No one is really safe (even when you do use Firefox), and for businesses, the focus should be business, not listening to music or fancy screensavers.
It may sound too extreme for some organizations, but then again, what are you willing to put at risk?