Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and earlier allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul24908.
https://exchange.xforce.ibmcloud.com/vulnerabilities/90852
http://www.securityfocus.com/bid/65281
http://tools.cisco.com/security/center/viewAlert.x?alertId=32683
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0686