A six-month-old ‘sudo’ vulnerability is still unpatched in OS X, and now there’s a Metasploit exploit pack to take advantage of the hole.