Security folks are paranoid for very good reason. It's a harsh world out there. We're not just talking about annoying script kiddies and spam any more, we're talking about hardened criminals and international terrorists.
That aside, most of this thread misses the point with UAC. It's way more than just a dialog box. Without UAC, you roll your box back to XP in terms of standard user friendliness. Without UAC you lose the significant security benefits of low-rights IE. Without UAC you lose the file and registry virtualization goo that is unfortunately essential to get many applications to work correctly.
That the dialog box and security desktop parts of UAC can possibly prevent you from getting owned is a nice side effect. The real advantage though, is how much easier it makes it to run your machine with a standard user account.
That aside, most of this thread misses the point with UAC. It's way more than just a dialog box. Without UAC, you roll your box back to XP in terms of standard user friendliness. Without UAC you lose the significant security benefits of low-rights IE. Without UAC you lose the file and registry virtualization goo that is unfortunately essential to get many applications to work correctly.
That the dialog box and security desktop parts of UAC can possibly prevent you from getting owned is a nice side effect. The real advantage though, is how much easier it makes it to run your machine with a standard user account.