The host is installed with Apple Mac OS X or Server 10.10 before 10.10.2 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which improperly stores Apple ID credentials in the log when additional logging was enabled. Successful exploitation allows attackers to recover Apple ID credentials.