CVE-2016-4641 (mac_os_x)
Login Window in Apple OS X before 10.11.6 allows attackers to execute arbitrary code in a privileged context or obtain sensitive user information via a crafted app that leverages a "type confusion."
Source: CVE-2016-4641 (mac_os_x)