...
In case of secure trunks, it is possible reject insecure calls playing a message to users that will be warned about the security issue
BES 4.x support
Before this version, Blackberry devices connected to BES 4.x could not complete automatic activation, due to a strange strange SSL negotiation done by Java 5 application, such as BES 4.1.
Despite SSLv2 is disabled, PrivateServer can now accept SSLv2Hello message, used to negotiate SSLv3 and TLS1.0 connections.
More details at RIM website