see bug 506693 for the linux version
Given how bug 506693 is going, it looks like it'll cover Mac as well -- the code is likely to be used if AVMPLUS_UNIX is defined, and that's true on both Linux and Mac.
Any progress regarding this security-related issue? Why is this issue blocking bug 506693 since 3.5 years ?!