A recent update from the Facebook Developers shows two new functions available to third party application developers.  The Storm Center was given two links I will forward that spell out the story very well.

The Facebook Developers site

An brief analysis and opinion here and here

The bottom line in this day and age is that he responsibility lies with the individual to protect themselves in the virtual world.  Whether a person chooses to provide the information and then share it securely, or not provide the information whatsoever, awareness is the key.