Evidently, the iPhone runs all of its applications as root. Now for those of you who have never used Linux, Mac OS X, or another UNIX operating system, let me explain to you what root is.
As a root user, you have access to all files on a given system and can perform read, write, and execute on those files. This capability is a two edged sword, as root access also opens your system up to attack. A cracker who wishes to harm your system generally covets root access, as non-privileged users generally have more restrictive permissions.
Generally, it takes an software-based exploit to successfully achieve privilege escalation. Not so with the iPhone. With the iPhone running as root by default, the door is already open. Were the iPhone to suffer an infection from a worm or virus, root privileges would allow it to spread unencumbered to other mobile devices and to other systems through email. Worse than that, the iPhone could be used to steal personal data or spy on unwitting users, causing general mayhem.
Hopefully Apple will close this gaping security hole before the liability is exploited. If not, Apple may be betting the farm on a device that is egregiously insecure.
Posted by -kf 
