Apple has issued an update to fix a security hole that allows anyone to bypass administrator authentication without needing to know a password. The security update is being pushed out via the Mac App Store. Apple advises users to install the security update as soon as possible to avoid the bug. The update is available for Mac users running 10.12 and 10.13 versions of the Mac operating system with admin rights. The vulnerability is described as a logic error that existed in the validation of credentials. This was addressed with improved credential validation.”]
Source: https://grahamcluley.com/apple-fixes-root-password-bug-install-update-soon-possible/