The kernel in Apple OS X before 10.10 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted filename on an HFS filesystem.
http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/97633