The email client in 1.4 still provides no way to disable automatic loading of remote content (images, etc). This is a MAJOR privacy and security risk. I'd take a patch that did nothing but break loading of remote content in HTML email.
Automatic downloading/display of embedded content in email messages is a major vector for malware on desktop OS platforms. It's unimaginable for an email client in these times to not have an option to disable this.