While this is old, I think it's still pretty relevant considering the recent linux-related submissions on the front page.

There is always something abusing when anticheats are vulnerable to escalation to kernelmode - often used to grant cheaters the ability to load unsigned code into the kernel.