The sso_util program in Single Sign-On in Apple Mac OS X before 10.5.3 places passwords on the command line, which allows local users to obtain sensitive information by listing the process.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1578)