Blocking UDP/TCP port 135 inbound will stop your internal hosts from getting infected, there shouldn't be any reason why you would open this port thru your firewall anyway, so it should be blocked already.
If one of your internal hosts does get infected somehow, blocking TCP/UDP 135 outbound will protect other Internet hosts.
