We have no plans to completely drop SSLv3. It is possible to compile it out already. And the next version after 1.0.2 will make it easier to specify the protocol versions you want to support, at runtime. -- Rich Salz, OpenSSL dev team; rsalz at openssl.org