hmm, I thought I tried these settings before and they did not work, but I guess it must have been a dream.
For anyone else who may be using Apple's guide to generate test certs, the only way I could get them to work is with these settings:
SSL Protocol, SSL Version: SSL v3.0 + TLS v1.0
SSL Protocol, Encryption Level: HIGH + MEDIUM + LOW
You can also throw in SSL v2.0 and eNULL if you want to but the critical thing is that both SSL v3.0 *and* TLS v1.0 are enabled. Otherwise it will not work. Which seems a bit odd because in Apple's guide, the code they give you for Apache's httpd.conf excludes SSLv3 (the "SSLProtocol all -SSLv3" part) and there are no problems. So I'm not sure what the deal is here, but oh well at least I figured out some settings that will work. :-)