As alternaut noted, there's precious little the end user can do until the various servers affected are repaired.
From the BITS blog at The New York Times: "The most immediate advice from security experts to consumers was to wait or at least be cautious before changing passwords. Changing a password on a site that hasn’t been fixed could simply hand the new password over to hackers. Experts recommended that, before making any changes, users check a site for an announcement that it has dealt with the issue."
