Originally posted here by celfie
su provides cryptographically secured authentication. which protects from tcp hijacking and spoofing. and sniffing.
If the remote user, connects to the terminal without SSH etc. su will not provide any protection against sniffers.