I know this change improves security but please exclude web requests! It is a real pain to get an exception on a site by site basis and this change completely ruins any dynamic use of web services. It looks this hosting company made the decision for open web permissions in a similar situation:
http://www.znetindia.com/support/kb2.asp?id=57

I have multiple sites down because of this "upgrade" and the only solution they have provided is that I upgrade accounts or switch to a difference host. This is absolutely absurd that they would conduct this process in the middle of a business day with no warning.

Certain webservices, if a ticket is submitted, will be reviewed on a case-by-case basis to exclude. All customers were warned of the changes to their specific servers two weeks prior to the change actually taking place via email to the account administrative email address on file.