I'm pleased to announce that I've got a working BIP 38 implementation for the iPhone. This allows sterile creation of two-factor paper wallets. One factor is generated on the phone, and the other factor can be generated by you on your desktop, or somebody else.
It works exactly like it's supposed to - anything left I have to do is mostly sprucing it up art-wise for the App Store.
It takes the passphrase of your choice, and then has two main functions:
1 - It will prepare an e-mail containing "intermediate codes" - these are the public keys of EC factors derived from your passphrase. They are the "first" factor in each two-factor paper wallet. You can either send the e-mail to yourself, or to somebody else, if you want paper wallets done for you.
2 - It will scan QR codes with the camera, decrypt the paper wallets, and show the unencrypted private key on-screen. (It will also show an unencrypted QR code on-screen when you press Details, just in case you have a way to scan it.)
My understanding is I can add beta users given the iPhone's UDID and then provide a private download link. (Bear with me if I take a couple days - this is my first iPhone app and I'm getting good qualified help building it, but sometimes learning is slow!). The App Store has programs for grabbing and e-mailing/clipping the phone's UDID, or it can be grabbed thru iTunes.
...Then on my desktop I use the e-mail to print some encrypted paper wallets...