...
For example, suppose that a web application must maintain a sensitive password file for a web service and also run untrusted code. The application could then enforce a security policy preventing the majority of its own code �������€š�š�š�������‚�š�š������‚�š����‚��“ ��������‚�š�š�š��������€š�š�š�������€š�š�����€š���€œ as well as all untrusted code �������€š�š�š�������‚�š�š������‚�š����‚��“ ��������‚�š�š�š��������€š�š�š�������€š�š�����€š���€œ from accessing the sensitive file. Because it must also provide mechanisms for adding and changing passwords, it can call the doPrivileged() method to temporarily allow untrusted code to access the sensitive file. In this case, any privileged block must prevent any information about passwords from being accessible to untrusted code.
...