The fact is that most people can't keep malware off their machines today. This has nothing to do with bitcoin. If you can't securely administer a machine, how could you possibly securely manage a local wallet? Further, you need to backup your keys, but most people can't administer proper backups either. Is it really a requirement that you need to be both a security and IT expert before you can use bitcoin?
It's a hard problem because even experts can't guarantee security, and as their services become more popular the incentives for thieves to spend a lot of resources breaking their systems only increases.