yum should be ported to use NSS library for cryptography. See the tracking bug for details and links on how it could be done.
yum doesn't use any crypto directly
yes, this is just like the createrepo bug. file it against python