Well, I think what it shows is this:
Even one company that has this problem could probably own a big chunk of RIM after a successful suit. The liability for them is tremendous even if only one user has the problem.
There are also all sorts of privacy rules, Patriot Act, and other federal regulations being broken if there is ANY chance of the wrong person getting an e-mail as a result of a software screw up. Some companies would vigorously pursue legal action if this happened to them. RIM has enough legal troubles already (at least in the US).
None of this necessarily means SP2 is particularly dangerous to 99.9% of users. It could be, but it doesn't matter. RIM has to act responsibly by pulling it to protect themselves and their customers, regardles of the risk level.