[原文]Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login (aka Loginwindow.app), Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory.
Apple Mac OS X Improper Memory Clearing Cleartext Credential Disclosure
Local Access Required
Loss of Confidentiality
Mac OS X contains a flaw that may lead to an unauthorized information disclosure. The problem is that the system does not properly clear memory contents, which will disclose sensitive information resulting in a loss of confidentiality.
Upgrade to version 10.4 or higher, as it has been reported to fix this vulnerability. In addition, perform the following steps:
1. Open 'System Preferences'
2. Click on 'Security'
3. Activate the 'Use secure virtual memory' option
4. Reboot your system