I noticed that NIST recently published the Draft Special Publication 800-179: Guide to Securing Apple OS X 10.10 Systems for IT Professionals. I’m looking forward to reading it. The public comment period is June 23 through August 15th, 2016.
The authors are careful to note that the recommendations only apply to 10.10, Yosemite. (System Integrity Protection, introduced in El Capitan, implements significant restrictions on root access.)