>There is no way dropbox would be able to explain to them what happened without scaring them silly.
Opposed to who? People who do know what it means and should be scared silly but aren't because they've been beaten into submission by breach after breach after breach.
You're making the rather large assumption that this was a one time goof on the part of Dropbox.
IMO, this is reflective of a corporate culture that places testing and security on the back burner. And while some people may be OK sending their data to such a company, the rest of us might not be.
There is no way dropbox would be able to explain to them what happened without scaring them silly.
And if nobody logged in, there can't possibly be any danger to their account.