The /etc/authorization file allows you to grant rights to some users to do more than they’d otherwise be allowed. For example, here’s Apple’s article about how to allow non-admin users to change the timezone (If for example you have a mobile workforce who need to change time zones but you don’t want them to mess with anything else on their laptops).