Well for the Active Directory OU cant you get that info from Unmanaged Devices setup for NT Domain or LDAP?
http://help.landesk.com/Topic/Index/ENU/LDMS/9.0/Content/Windows/umd_c_overview.htm
And there is a Reports section for unmanaged Device that you can use for those devices.
As far as missing patches are you looking for managed pcs to query on?