Provided Tiller Service (Helm v2) has been deployed in your Kubernetes cluster, there is high probability that the users can get broad range of permissions.
Restricting access to Tiller from within the cluster limits the abilities of a compromised pod or anonymous user in the cluster. Therefore, it is recommended to upgrade to latest version of Helm, i.e, v3 as Tiller has been obsoleted in latest versions.