To be fair, it's probably still worth taking a look at the headers to determine if this mail is coming from an actual gmail server, or some random IP addresses spoofing a gmail address.
In either case, I'd recommend logging a case with Symantec so that they are aware of the spam, so that they may look into ways of filtering these out.
In the meantime as a stop-gap, you could look into just redirecting gmail emails (depending on how many your management woyuld typically expect to receive from gmail addresses) into quarantine, and give them the ability to release the ones they believe to be legitimate.
More info on qurantine notifications below (again, as a potential stop-gap until the Symantec rules are updated):
http://www.symantec.com/docs/HOWTO92957