sure, without any action from the user to increase safety, desktop OS's just allow any app to read any files.
On the other hand, desktop OS's allow a wide spread list of ways to control what applications have access too (especially Linux and BSD families).
Although, despite all this, running malware can never be safe.