From Debian package 0.2.20100524-9

  * Allow mailman_mail_t to read /dev/urandom and usr_t files

Index: policy/modules/services/mailman.te
===================================================================
--- policy/modules/services/mailman.te.orig
+++ policy/modules/services/mailman.te
@@ -61,6 +61,8 @@
 # Mailman mail local policy
 #
 
+dev_read_urand(mailman_mail_t)
+files_read_usr_files(mailman_mail_t)
 allow mailman_mail_t self:unix_dgram_socket create_socket_perms;
 allow mailman_mail_t self:process { signal signull };
 allow mailman_mail_t self:capability { kill dac_override setuid setgid sys_tty_config };
@@ -125,4 +127,5 @@
 
 optional_policy(`
 	su_exec(mailman_queue_t)
-')
\ No newline at end of file
+')
+