rootpipe, a privilege escalation vulnerability in OS X version 10.10, allows attackers to completely bypass logging in and gaining the highest administration privilege on a Mac.
To protect against it, create a new admin user and remove the admin rights from the daily used account. Make sure that admin account has a super strong password. Also, use the Apple FileVault tool to encrypt the contents of the hard drive.
