The DNS rule is to try and minimise virus/trojan activity. Yes, it has caught a few people out.
the drop local traffic rules ensure no private addresses are leaked outside to the internet, and similarly private address coming in from the internet, which is used for spoofing.
Thanks, Ross. That's just what I was looking for.