To everyone asking if the HeartBleed vulnerability means that they need to change all of their Internet passwords: Maybe.
A good preventative step you can take is to set up your cell phone as a security measure on your primary email account.https://accounts.google.com/SmsAuthConfig
The worst case scenario of having all of your passwords compromised can be mitigated somewhat if you primary email address is not compromised.
Your primary email account (I bet it's Google Mail) is a great way to recover lost or stolen accounts. But you cannot use your Google Mail account to recover the rest of your online life if it has been lost or stolen, itself.
Google Mail supports using your cell phone to protect your Google Mail account. This can protect your Google Mail account if HeartBleed does it's worst, and at best it just gives you some additional peace of mind.