The fact that currently, encryption would have to happen at Google smells to me like a gigantic flaw in the whole "web apps for everything" mantra. I can not only encrypt when I run my own mail client with standard protocols, but I even get to choose whether I want to go S/MIME or PGP. Neither is an option in the webmail space unless I want to delegate crypto to the service provider.

(Depending on your conspiracy bent, you could also say this constitutes a non-flaw from Google's perspective.)

When you consider that they recently patented finding people likely to be evildoers based on their social connections, well... http://tech.slashdot.org/story/12/11/09/1452243/google-patents-guilt-by-association