You can ignore this story. The moron issued accounts to the machine AND left open a way for these people to remotely access the machine without a problem(SSH).
That effectively makes it a local exploit rather than a remote exploit, but I do not think it makes it worthy of being completely ignored. Considering that Apple would very much like its machines to be used in public, lab-type environments, this does not speak well to their security in such situations.
Automatically creating admin accounts on request. How handy. It's like giving the keys to an auto thief.