As posted by Tim Sutton, the installation of “Security Update 2015-002” on a 10.8.5 or 10.9.5 Mac will leave the /mach_kernel file visible. That’s fine, until someone deletes the file & then can’t boot their Mac.
As ever, Rich Trouton has blogged a method to hide the file via Casper.
However, Rich does love an EA & I’m not so inclined therefore the following is an EA free method to achieve the same end.
We can use that to create a Smart Group as shown below:
So the criteria is;
Operating System is 12F2501 or Operating System is 13F1066
As mentioned by Tim in his post, Apple have a KB article on how to re-hide the mach_kernel file.
We can now create a Policy that is scoped to the Smart Group we created above, with a trigger of “Recurring Check-in” & an “Execution Frequency” of “Once per computer”
Click “Save” & we’re done.