Does your Android app uses OpenSSL?
Do you mind test your app for the Heartbleed bug using this scan: Heartbleed Scanner-CM Security
It keeps giving a non-sense warning that my games have the bug that are making my users going crazy.
I just use SSL to validate (locally) the IAP receipts and I also already re-build using Corona latest build 2014.2275.
I did the scan using another scan app (https://play.google.com/store/apps/details?id=com.trendmicro.tool.heartbleeddetector) and the games were scanned without problems.