Every fork() on Linux relies on copy-on-write to make process creation cheap, and Redis's BGSAVE forks its entire dataset to get a consistent snapshot using this exact mechanism. The 2016 Dirty COW vulnerability (CVE-2016-5195) exploited a race in this very write-fault path to let unprivileged users gain root, showing COW correctness is a security property, not just a performance one.