As westi has already noted, the next version of WordPress will have XML-RPC and AtomPub disabled by default. It’s easily turned on via an option in wp-admin, and can be enabled during installation as well.
This reduces the number of potential ways an attacker can break in. To be clear though, I’m not aware of any current security issues with XML-RPC or AtomPub in WordPress.