pwl 'n' stuff: Is Open Source Secure?

With such a huge community of developers contributed code to open source applications, what steps are in place to prevent malicious code being injected into widely distributed applications?