Apple · Os X Server · CVE-2014-4447
**Name of the Vulnerable Software and Affected Versions**
Apple OS X Server versions prior to 4.0
**Description**
The issue allows local users to discover cleartext passwords by reading a file after a profile setup or edit occurs. This is related to the Profile Manager component.
**Recommendations**
For Apple OS X Server versions prior to 4.0, update to version 4.0 or later to resolve the issue.