IMHO, you’re not pwned if your attacker doesn’t get #. What good is a user account on *nix?
I agree. . . however, the challenge on this Pwn2Own contest was to crack into the browsers. They did. Extra credit was given for getting to root or system. That was only accomplished on the Windows machine.