In general, setuid programs are less secure in C than in Perl, not only because of buffer overflow exploits, but also because C doesn't know how to do taint checks.