Cocktail 3.5.4 and possibly earlier in Mac OS X passes the administrative password on the command line to sudo in cleartext, which allows local users to gain sensitive information by running listing processes.
Exploitability
AV:LAC:LAu:NImpact
C:CI:CA:C7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C