Apple Mac OS X HItoolbox VoiceOver Services Arbitrary Input Field
Local Access Required
Loss of Confidentiality
Mac OS X contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when VoiceOver reads the contents of secure input fields, which will disclose sensitive field information resulting in a loss of confidentiality.
Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.