What can a site administrator do today to combat these kinds of flaws? Is there some certificate pinning technology (I don't fully understand what that is) I can use on my own sites now to push in the right direction?

I try to be an early adopter of such practices such as using SSL all the time on all my sites.