I strongly recommend that all gmail users go into their Settings next time they use the service and change their "Browser connection" setting to be "Always use https" (it should be located at the bottom of the page just above the Save Settings button). This is a new setting that will offer better protection all the while you are using it instead of just at login to protect your password.
A security expert has demonstrated (http://www.hungry-hackers.com/2008/08/gmail-account-hacking-tool.html) the vulnerability of any gmail account if you don't have this new setting.
Thanks for the heads up, Koth