Details
Software sometimes insists on being installed in the /System Directory and have inappropriate world writable permissions.
Rationale:
Folders in /System should not be world writable. The audit check excludes the ‘Drop Box’ folder that is part of Apple’s default user template.
Solution
Change permissions so that ‘Others’ can only execute. (Example Below)
sudo chmod -R o-w /Bad/Directory
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.