In the interest of fairness, here's a Mac security hole as well:

http://www.carrel.org/dhcp-vuln.html