So why is there a problem with this ?


The behaviour of an object may be dependent on its attributes.
Malicious use of serialized objects can exploit otherwise correct behaviour of object to do something harmful on the host computer.
Objects may perform implicit actions such as a DESTROY subroutine
Taintedness is not generally propogated to objects