If you are using Jenkins in an intranet (or other "trusted" environment), it's usually desirable to leave this checkbox off, so that each project developer can configure their own project without bothering you.
If you are exposing Jenkins to the internet, you must turn this on. Jenkins launches processes, so insecure Jenkins is a sure way of being hacked.
For more information about security and Jenkins, see this document.