with this mailing list message sent today
http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/063987.html

They "will be releasing more details of the security features of the
Android platform over the next several months, as well as developer
documentation and guidance"

and they hope that all possible security vulnerabilities will be reported to Android security team in a responsible way.