Hardened runtime, sandboxing and XPC services

Jeff Johnson of @lapcatsoftware has just published an excellent technical article looking at controversial issues over hardening, sandboxing, and XPC services, with respect to security and privacy. If you know what XPC services are, and are concerned at how they interact with sandboxed and hardened apps, you should find it compelling reading.