egemen, ok, thank you once again. Now it is clear.
Version 6 is going to change this somehow? As far as I understand compatibility issues I think that keylogging allowed by default is not the best. While in previous versions firewall came into play (blocking keylogger’s attempts to send gained data) now it’s (let’s be honest) disabled by the default 
yes. We will not let sandboxed applications to keylog in CIS 6. But CIS 6 is different from CIS 5. So lets not compare them with CIS 5 as reference. They operate differently.
Sound like a superior release of CIS is coming. Thanks Egemen for making essential improvements and not putting ‘the security’ away from your work plan. :-TU