I have to disagree with Jesse on the idea that the Authenticator solution is driven by greed. Two-factor authentication is, generally, a good solution. However there is added cost involved over the traditional password system. Costs include the token, the infrastructure, and support.

It's hard to determine the token cost as Vasco isn't very forthcoming with their per-unit pricing. But I know RSA tokens go for a whopping $50 per unit. Paypal sells their tokens at $5 ea. And someone on the WoW forums claims they've gotten a dealer to provide pricing at $18ea for the Vasco Go 6 (Blizz authenticators are branded versions of these) at a minimum of 5,000 units.

It's possible that Blizzard is making money off the deal. However, I wouldn't be surprised if the Authenticator pricing is simply sharing the cost with the customer. Your $7 fee helps eat part of the cost of Blizzard providing you with improved security. Blizzard eats the other part of that cost as they hope, ultimately, it decreases their support costs.