StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive information.
http://www.us.debian.org/security/2006/dsa-1022
http://www.securityfocus.com/advisories/9384
http://sourceforge.net/project/shownotes.php?release_id=352676
http://secunia.com/advisories/19489