The SQL Server parameter "OLE Automation Procedures" is recommended to turn off for the security best practice. In the Center for Internet Security (CIS) document, it lists as one of parameter for Surface Area Reduction.
Currently, DPA collects the metrics using OLE Automation through the extended stored procedures, i.e. sp_OACreate, sp_OAMethod, etc. Besides, this is an old method of collecting metrics, it is also not secured. I would like the OS stats collection through more modern ways of collecting, such as using WMI or DMVs.
