Some users of the most up-to-date Mac operating system OS X 10.7 (Lion) should close up a potential security gap that might allow passwords to be saved in an unencrypted form. Those affected would have upgraded from OS X 10.6 (Snow Leopard), reports software security company Sophos. Such a move would leave them using the old encryption software FireVault.
To erase the problem, upgrade to the most current version, FileVault 2. The problem relates to an Apple programming error, says security specialist David I Emery. In theory, only administrators could access the password files, but well-versed attackers could access it by taking apart the hard drive or using a backdoor in a security recovery partition.