Mac OS X contains a flaw that may allow a malicious user to escape a chroot environment. The issue is triggered when a user logs in using the full name, which can be changed by the user, rather than the short name, which is matched against the chroot users list. It is possible that the flaw may allow unauthorized access to all directories resulting in a loss of confidentiality and integrity.
Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.