The hacker can potentially use the reset code, if he is able to sniff the traffic between MtGox mail server and your receiving mail server.
Actually not very hard to do if you've got some insider contact in the datacenter where MtGox colocate their servers.
Reset emails are sent in clear for convenience.