diff --git a/content/posts/macos/macOS Security Overview/index.md b/content/posts/macos/macOS Security Overview/index.md
index f4436b0..f33063e 100644
--- a/content/posts/macos/macOS Security Overview/index.md	
+++ b/content/posts/macos/macOS Security Overview/index.md	
@@ -28,7 +28,7 @@ sudo pmset -a hibernatemode 25
 
 The [App Sandbox](https://developer.apple.com/documentation/security/app_sandbox/protecting_user_data_with_app_sandbox) is a feature that limits the access an app has to the rest of your system. Developers enable it when they sign their app, so it's not possible for you to enable it or modify the entitlements since they are defined in the signature.
 
-Sandboxed apps are given their own container in `~/Library/Containers` that they have exclusive read/write access to.
+Sandboxed apps are given their own container in `~/Library/Containers` that they have exclusive read/write access to. Unsandboxed apps can't access it unless they have root privileges.
 
 The App Sandbox is designed to limit the damage to your system in the event an app is exploited, however it can't protect against malicious developers since they can just disable or weaken the sandbox in a future update if they want. For protection against malicious developers, you'll need to install apps from the App Store where the sandbox is enforced.