With 'ip directed broadcast' enabled, it does allow for certain denial of service attacks to be performed. These days I believe most operating systems won't reply to directed broadcasts so there isn't as great a risk as there previously was. Also if you're not directly connected to the Internet and are going though a firewall, you should be relatively safe leaving this command enabled.