Serious security flaw in OS X Yosemite 'Rootpipe'

Details are finally emerging about a serious vulnerability in Apple's OS X Yosemite, called "Rootpipe" which allows root access by attackers. The privilege escalation vulnerability was discovered by Swedish hacker, who has been asked by Apple to withhold details until January 2015 - since Apple likely wouldn't allow details until they have a fix, this is probably when users can expect a patch. Rootpipe is a privilege escalation from admin to root so switching to a non-admin account would clearly be a good thing.

 it.tut.by