Securing SQL Server by Denny Cherry:

- page 153 recommends to "disable xp_cmdshell"

- page 161 recommends "removing the extended stored proc xp_cmdshell" but goes on to say that (paraphrased) "you may need to add them back before doing system upgrades and they can be re-added by a crafty attacker with the right level of permissions and knowledge of the system"