Re:All that security, but insecure setuid (Score 3)

That's true, but MacOSX ships with almost all of its services turned off, as did Mac OS 9 and its predecessors. For instance, the two services (ftpd and ntpd) which were the subject of recent Apple advisories are not enabled in the default configuration. So it will still take a substantial amount of work to get a shell on an OS X desktop from which an attacker can exploit the local vulnerabilities.