I gave my sister an admin account on my machine.

I have a password on my screen saver.

She entered her username/pw into the screen saver screen and it allowed her in.

Now, I don't mind her getting in there, but this might be a big risk for some people.

Any ideas?

I think you can basically do anything in OS X with an admin name and password (if you know what you're doing). So although I can see how it'd be nice if you could have your name fully protected by your own password, I wouldn't really call this a flaw. Basically, OS X trusts that anyone with an admin account means no harm to you or your computer. That's how I see it, anyway.