Works for me with the latest Nightly, build ID: 20130304030933. I don't get this warning: CSP WARN: Failed to parse unrecognized source 'unsafe-inline'.
Works for me on version 23.0. I get 135/187 pass, no warnings about 'unsafe-inline', but lots of warnings saying: This site specified both an X-Content-Security-Policy/Report-Only header and a Content-Security-Policy/Report-Only header. The X-Content-Security-Policy/Report-Only header(s) will be ignored. @ http://csptesting.herokuapp.com/test/load/186 which seems correct to me.
Worked for me on 27.0.1 No warnings about unsafe-inline.