Why do you try to filter outbound connections at all? If "something" makes it on your machine the first thing they will do is drop your rules.
You imply the *only* reason for outbound filtering is stop a hacker. In some environments it serves as an additional layer of protection against other problems related to configuration/application issues as an example.
jlc