How would you get infected?

Then you'd re-register the finger in its cut form. I use index fingers for admin, middle fingers for non-admin. Unique 32-character fully-random passwords with high-ASCII characters thrown in? No problem *swipes finger* Where it gets less convenient, is when my hands are covered with grease or I'm wearing chemical-resistant gloves.

I haven't researched how /savecred stores credentials since I haven't used that in a situation where it would really matter. My own use for it in the post-Win2000 era *isn't* to elevate something to admin, but to run it as an alternate non-admin. E.g. two Gmail accounts open in two browsers, the second being run as an alternate non-admin.

If the fellow who has lots of stuff to run as Admin wants to make that simple on Win7/8, I'd say set elevation to "Prompt for consent on the secure desktop" and run as a Protected Admin with UAC maxed, as a good compromise. This reduces elevation to a Yes/No prompt even if the account has a password. And UAC includes file-system & Registry virtualization that can trick some software into running without Admin rights even if it thinks it needs them.