Zen Cart is looking to see whether the .htaccess files are properly protecting against unauthorized access of files which the .htaccess should be blocking. And if it's able to gain access to those files despite the presence of .htaccess then it raises that warning.
See the Apache section of this article: