Sendmail runs as a suid root process. If it is configured poorly, it could compromise root access on your system.

The Sendmail configuration must be protected.
The queue directory must be protected.
Delivery of email to programs must be restricted.
Care must be taken with sendmail log files.