Ruby Version Manager (RVM) before 1.2.1 writes file contents to a terminal without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via a crafted file, related to an "escape sequence injection vulnerability." NOTE: some of these details are obtained from third party information.
https://exchange.xforce.ibmcloud.com/vulnerabilities/64746
http://www.vupen.com/english/advisories/2011/0174
http://www.securityfocus.com/bid/45841
http://secunia.com/advisories/42952