Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability