The yum install xorg-x11-apps bit is so you can use the xinput tool as a demonstration of the problem. Fedora doesn't have it by default apparently so you need to install it.
A malicious app could just directly use the X protocol, no need to call this app, so unfortunately no additional privileges are needed.
A malicious app could just directly use the X protocol, no need to call this app, so unfortunately no additional privileges are needed.