A user on a network with intentions to circumvent the security of the system; a cracker.
Particularly, when administrators are discussing the security of their system, they will use the term "malicious user" to refer to any hypothetical individual who might attempt to break in. The administrators will try to predict what the malicious user could do, and guard against it.