University Technology is aware of the recently announced Apple Mac OS security issue called "Rootpipe" affecting Mac OS X versions 10.7 (Lion), 10.8 (Mountain Lion), 10.9 (Mavericks), and 10.10 (Yosemite). We are closely monitoring this issue and more details will be forthcoming about our response plan at the end of this week.
Last Wednesday, Apple released a major update to the latest version of Mac OS, version 10.10 (Yosemite). In addition to correcting several issues with Yosemite that had caused many organizations, including Drew, to recommend against upgrading, this latest update also included fixes for several security issues. The full extent of those issues were disclosed on Thursday by the independent researcher who originally discovered the vulnerability, including that the issue exists in prior versions of Mac OS starting with 10.7 (Lion) and onward. As Apple has indicated that they do not intend to fix the issue in prior releases of Mac OS X, it will be necessary for all Macs to be upgraded to Yosemite including the 10.10.3 update released last week in order to eliminate the vulnerability.
University Technology is in the process of developing a plan to upgrade University-managed Macs to this release. While we do encourage you to upgrade any personally owned Macs to the 10.10.3 release at your own discretion, we ask that you do not do so on University managed Macs for now and instead wait for further information from UT which will be forthcoming at the end of the week.
More information: http://appleinsider.com/articles/15/04/09/update-your-mac-apple-fixes-major-flaw-in-os-x-yosemite-but-wont-patch-lion-mountain-lion-or-mavericks.
Please don't hesitate to contact us with any questions or concerns.