To access SysPrefs > Trusteer Endpoint Protection > Security Policy you've got to get past a CAPTCHA pane that says
You have chosen to perform an action that requires user approval.
To me, that suggests that an Admin password should be required...that Rapport is insecure in at least one respect, but the CAPTCHA pane suggests that somebody thinks otherwise.
Any ideas?
Edit: Feedback submitted. (This app was clearly
not designed by a team that's familiar with OS X.)