Shawn has a summary of new security features on his blog. Instead of the biggies like X509 support, negotiate stream and secure remoting he focuses more on (yet) unknown stuff like SecurityTransparent, Host Protection, AppDomainManager, FIPS enforcement a.s.o.

As you can see, the list is not complete and shawn will update this page when new articles get added. so check back. very recommended