"Adobe reader X limitations:
Protected Mode will not prevent unauthorized read access to the file
system or registry.
Protected Mode will not restrict network access.
Protected Mode will not prevent reading or writing to the clip board.
Given these limitations, attackers that exploit these “protected” components
will still be able to stay resident in memory and perform damaging activities
Read and exfiltrate data from the registry and/or user’s file system
Attack other machines and devices on the network
Use Reader as a stepping stone to execute other exploits against the host
system including exploits against kernel services
While Adobe’s Protected Mode is a step in the right direction for mitigating
risk of Adobe Reader, it still leaves significant residual risk on the table
for cyber adversaries to exploit. http://www.invincea.com/blog/2010/11...der-x-sandbox/
Bear Bottoms, security consultant http://bearware.info