So I just got done reading Larry's article on XP SP3 over here: http://www.eweek.com/article2/0,1759,2204198,00.aspNear the beginning of the article he mentions something about needing an offline / disk based version of the update process for people who can't connect to Microsoft Update each month to get up to date. I shot him an email but we actually do offer something like this . . . well you have a variety of options for achieving this but probably the easiest is to just download our ISO image of security udpates each month and burn it to CD or DVD (or if you have VPCs you can just mount the ISO image directly in your VPC).
Here's a KB article we use as a place holder that links to each months security udpate ISO image: http://support.microsoft.com/kb/913086
I've heard of other customers who setup WSUS on a laptop and each patch tuesday they sync it with our web site and then take the laptop to the various remote sites that need updating . . . they already have the remote sites configured to point to the laptops WSUS service OR they have a WSUS server at that remote site that is configured to point to the laptop WSUS server and they just sync the remote sites WSUS server with the laptop each month.
You can learn more about WSUS here: http://technet.microsoft.com/en-us/wsus/default.aspx
Oh and this is all free stuff. :)