Running a linux client in a VM (eg openbox) should be pretty much immune to the copy-paste framegrabbers (provided you turn off the guest-host integration), though not the keyloggers. An on-screen keyboard within the VM should take care of this.
So I must be the only one in the world who switches to the linux tty (you know, that Ctrl-Alt-F1 "trick") to enter the bitcoind password, so only a kernel-level logger can break it, right? Never seen anyone even mention that