I think XML sockets in Flash are a fantastic idea. But, I can't help wonder how secure their usage is. I'm definately no security expert and I'd like to get some ideas from the community on how XML socket implementation might affect server security.

For instance:
How secure is TCP/IP compared to HTTP?

Does Flash support some kind of encryption or can anyone eaves drop on XML messages going to/from the server?

Is it possible for someone to hack my server though an open TCP/IP port?

What are your concerns out there, if any, regarding XML socket security?