0-value outputs can be spent (uselessly)
You have a habit of identifying these interesting and useful corner cases Theymos!
One can then store 256bits in the "random" k value of this signature for every transaction spending those 0 coins back to itself! Anyone can read this information with a suitable patch to the client or some freestanding software.
ByteCoin