There was a very good talk at defcon21 (I believe) about Apple Security. It wasn't super in-depth, it basically covered fire-walling.<p>Basically by default OSX ships with its firewall completely off. Turning on your firewall, blocks most ports except the few that are by default for standard black box mac services. If you turn on enhanced stealth mode firewall, you block pings. Not the entire IMCP protocol, just pings. And nothing else. So you can sync PRNG.<p>Also there is issues in bonjour's UDP handling which let you consume all CPU resources (pin the processor at 100% remotely, no permissions just UDP spam). Remotely, also bonjour can't be disabled or blocked by the GUI firewall.<p>:.:.:<p>A lot of people look at OSX and say, "Hey its a unix, I'm safe." And they aren't. No Unix is safe by default, even OpenBSD requires you watch what your doing.
Windows is like living in the ghetto with bolted doors and windows. OSX is like living in the country side with doors open. Both are not that safe in somewhat different ways.
I understand OSX is the topic of the article. However, I don't think Linux fares any better. Should we really be happy that we're able to 'root' our phones?