I've found the following request in the web logs for a server that doesn't
have Cobbler installed:
93.231.100.23 - - [10/Jan/2013:00:05:14 +0000] "POST
/cobbler_api HTTP/1.1" 404 288 "-" "-"
Is there a possible exploit in Cobbler that script kiddies are probing now?