Do not use system() from a program with set-user-ID or set-group-ID privileges,because strange values for some environment variables might be used to subvert system integrity. Use the exec(3) family of functions instead,but not execlp(3) or execvp(3). system() will not,in fact,work properly from programs with set-user-ID or set-group-ID privileges on systems on which /bin/sh is bash version 2,since bash 2 drops privileges on startup.

和从男子bash：

If the shell is started with the effective user (group) id not equal to the real user (group) id,and the -p option is not supplied,no startup files are read,shell functions are not inherited from the environment,the SHELLOPTS variable,if it appears in the environment,is ignored,and the effective user id is set to the real user id.

看来你的setuid(0)电话规避了这种保护.