It's possible to bypass sandbox with "reflection" API. This vulnerability can be used for silent trojan installation.
vulners.com/securityvulns/securityvulns:doc:11351
vulners.com/securityvulns/securityvulns:doc:11352