This enhancement is new in the Solaris 10 1/06 release.
This release includes a new command, embedded_su. This command offers “su-like” features to programs. This command enables graphical user interfaces to prompt for authentication data and execute operations as another user. This command provides functionality exactly equivalent to the su command, and so poses no new security risks. System administrators who have used /etc/pam.conf to customize the behavior of the su command can choose to add /etc/pam.conf entries to control the embedded_su command.
For an example, see the embedded_su(1M) man page.