A post over here regarding the anxiety that the US Feds have about the security or otherwise of SaaS.
Now I know that most SaaS players are not targeting this market, but more and more, security will become (and is becoming) an issue and SaaS enterprises need to develop the robust security of their offerings.
I guess if nothing else a US Federal acceptance of security is a fair marketing angle in terms of selling to larger businesses.