It was found that the socket used to manage the Docker service was world readable and writable. A local user could use this flaw to escalate their privileges to root. Acknowledgements: Red Hat would like to thank Jon Stanley for reporting this issue.
This flaw also affects all Fedora 19 and 20 docker-io packages up to and including 1.0.0-4.
This issue has been addressed in following products: RHEL Extras for RHEL-7 Via RHSA-2014:0820 https://rhn.redhat.com/errata/RHSA-2014-0820.html
Created docker-io tracking bugs for this issue: Affects: fedora-all [bug 1114810] Affects: epel-6 [bug 1114811]
Created docker-io tracking bugs for this issue: Affects: epel-7 [bug 1114816]