UAC (User Account Control) prompts for confirmation when actions require elevated privileges — even admin users run with standard rights by default, requiring explicit elevation for administrative actions.
UAC is a least-privilege implementation in Windows. Reduces malware impact by requiring elevation. UAC bypass is a common malware technique (using COM object hijacking, dll hijacking, etc.). Never disable UAC on admin workstations.