Recent SQL Server Worms and viruses have shown how vulnerable SQL Server can be. Microsoft is attempting to reduce the security holes in the product. However, the main responsibility for security lies with DBAs and system administrators. If we are administering SQL Server, we had better be well acquainted with SQL Server security.
SQL Server Books Online (SQL BOL) contains a lot of info about SQL Security.