Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
http://www.securityfocus.com/bid/206
http://www.iss.net/security_center/static/7444.php
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/143