A macOS developer discovered a vulnerability with the latest version of macOS High Sierra. The vulnerability only requires anyone with physical access to the target macOS machine to enter "root" into the username field, leave the password blank and hit enter a few times. It can give anybody the highest level of access.
There is a temporary fix.

https://thehackernews.com/2017/11/mac-os-password-hack.html