One may ask why sendmail can't be made secure. The problem is that sendmail is so complex and so many features. Someone was even able to write a four-function calculator with the sendmail.cf.
Don't run it unless you have to. On a single user machine you're much safer running something simple like qmail. qmail doesn't have the rich feature set of sendmail but most sites such as a dorm machine don't need it.