Direct device access dangers (cont)

Raw access to /dev/kmem

Read any data on system

Password stored in process memory (IMAP cache pw, etc)
View network socket data
Cleartext streams from crypto filesystems, GPG files in memory

Write access

kill any process
change state/variables/etc of processes
change uid of any process to root