nice box. I had a tough time seeing what was in front of me for root. I had just not seen that before and for some reason my enumeration of processes did not turn up the vector. The clue about looking at what an editor has accessed is a really good clue. Once you have that info, the google exercise is very straight forward. I really enjoyed the foothold/user 1 enumeration.
uid=0(root) gid=0(root) groups=0(root)