Admin rights on 64-bit, then Sandboxie default exceptions

[PiwPi]

Hi, 3 quick questions here.

I'm using Sandboxie 3.76 on Windows 7 64-bit, with experimental protection turned on.

1/ I read that it's safe to disable the "drop rights" checkbox in my situation. Is it REALLY ? Can I run any of the most sneaky malware and grant it admin permission in a sandbox, and be confident that just deleting the sandbox will do in 64-bit ?

I mean, the malware can read stuff and send it home, but it can't write or modify anything in the real system even with admin rights. It can't modify Sandboxie itself either, such as sandbox configuration for instance. Correct ?


2/ How do Sandboxie default exceptions work ? Could a malware take advantage of them to affect the real system and/or Sandboxie itself ?


3/ How did Sandboxie fix its incompatibility issues with Adobe Reader and Flash Player when their protected mode was released ?


Thanks!

[PiwPi]

If anyone can answer even just one question, that would be interesting already !

Please don't hold off replying if you don't know all 3 answers or don't have time to write them all