Here's a nice blog post by the Microsoft Security Research and Defense Team on the details of how they've changed the autorun feature to make sure that malware doesn't leverage this feature in the future.
Check it out at:
Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer