I have been through that article several times and it isn't much help. From what I can tell in my TCPdumps is that the Client Hello comes in, the Server Hello goes out, and immediately afterwards a RST ACK comes from the client. The handshakes errors may indeed be a red herring.
Again, the issue I am chasing is how in the world 10% of our traffic is still SSLv3 when our user-agent logs would lead us to believe our customers should be able to use TLS. So the question is, why are they negotiating SSLv3 and why does this seem to be limited to Linux clients?