Found at Bill Bumgarner:
As it turns out, Sandvox silently installs Smart Crash Report in ~/Library/Input Managers/ when it is launched. As an input manager, SCR is thusly loaded into every Cocoa app launched and subsequently uses various non-supported mechanisms to modify the behavior of said application.
Sandvox installs a hack in the Input Manager - these are libraries that plug into the interface to modify application behavior. They usually overload system functions with their own code. Not a rootkit - they don't hide. But they may destabilize the system. And above all: they affect not just this one program, but all programs that use this mechanism.
Sandvox is off my disk, sorry, but I don't want something like this installed without a big warning sign and without asking. We're not under Windows ...