DYLD_PRINT_TO_FILE
to overwrite the file that contains the list of users allowed to gain root-level permissions. This file can be modified to allow the logged-in user to gain these administrator powers without needing to type in a password, and thus allowing any software running to snatch these powers without permission, too.