PolarSSL condones the practice that makes OpenSSL less secure than any other, which is commercial entities not being obligated to give back. They simply extend that privilege to people who include it in a commercial product.
The biggest problem with OpenSSL is that noone helps.
> PolarSSL condones the practice that makes OpenSSL less secure than any other, which is commercial entities not being obligated to give back.
...it really isn't that simple. Many of the mechanisms for obligating commercial entities to give back simply result in those entities ignoring a project from the start. Plenty of projects that don't enforce that obligation receive significant commercial support.
The biggest problem with OpenSSL is that noone helps.