There are few ways to bypass limitations and execute privileged code from the applet.
vulners.com/securityvulns/securityvulns:doc:28434
vulners.com/securityvulns/securityvulns:doc:28435
vulners.com/securityvulns/securityvulns:doc:28438