Well, one, mostly. Not sure how many are really running 2000, but just in case, it's there too.
The vmx.dll flaw is not patched. A completely updated and protected system is still vulnerable if you visit the wrong site. There's a line there to paste into the Run dialog box that will unregister the problem DLL, and keep you protected until Microsoft fixes the problem. Something may get broken on a few websites, but it's very rarely legitamtely used, so you will likely not notice any problems with any sites.