It uses the "CryptGenRandom" function for Windows and "/dev/urandom" for Posix.
It's recommended to combine the output use additional processing generated random numbers
via provided functions for systems where security matters.
Windows "CryptGenRandom" RNG has known security vulnerabilities on
Windows 2000 and Windows XP (assuming the attacker has control of the
machine). Fixed for Windows XP Service Pack 3 and Windows Vista.