MacRumours reports a Mac OS X box hacked in 30 minutes in a competition. Sounds like a local exploit to me, as hackers are free to create shell accounts on the box, although it tells nothing about how remotely-exploitable Mac OS X is. However (1) a local exploit with privileged escalation is still an exploit that can grant running process super user privilege (2) it is easy to get unprivileged user to run a local exploit on Mac -- they click on everything that is on the desktop. Still, I still feel an out-of-box Mac is more secure than an out-of-box Windows. However, at the same time Mac users are probably less security conscious and having more usually-ungrounded faith in their operating systems.