Foundation in Apple Mac OS X 10.4.11 creates world-writable directories while NSFileManager copies files recursively and only modifies the permissions afterward, which allows local users to modify copied files to cause a denial of service and possibly gain privileges.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0055)