Better still, check this post, especially archoille's explanation of how Android deals with stuff. He's a dev.
http://androidforums.com/htc-evo-3d/362038-memory-task-management.html
Once the app is loaded into memory it is highly exploitable.
Spiderman app these permissions
Edit sms or mms, read or mms, receive sms.
full internet access
modify/delete sd card contents
read phone state and identity
send sms messages
change network connectivity, change wifi sate, prevent phone from sleeping.
So all it would take is for you to visit a website that has an exploit that uses the spiderman app that is already running in memory, and they can get a hold of your sms, mms, and phone identity. If it was not already in memory, they would have to exploit something else. Why leave a door or window open that only point is to get you robbed?
Let us look at the other apps, htc watch is installed to view the green hornet. It has access to your account authenticator. Wonder what would happen if that was exploited.
So even though android has a "great" memory management. It has the worst record for security because it randomly starts apps that are being forced on that allows extreme access to system resources. Since you do not have a choice but to allow these resources, there is really nothing you can do about it.
Once some hacker figures out that forced apps are very unlikely to be updated and secured, and their for allow easy access to system resources, you will start to see attacks against them.
Once again, why leave the door or window open to your house, if you know you could get robbed?