Access Control Lists (ACL) and Capability Tickets oth are created in matrix. The ACL contains lists of users for a particular object that has certain access rights determining which subjects are given the access to a particular source of content or resource. It provides information on a given resource though this type of data structure might cause some inconvenience while determining the access rights for a specified user. While on the other hand a Capability Ticket will specify all the authorized functions or objects with a system of breaking down the rows further where each user will have a number of tickets which they can authorize to lend to other users.
For further claification ALC is a of access or a table by object while a Capability Ticket is for accessing a table by subject. While with ACL you are capable of deleting a user from the list removing the user to gain access to the resource henceforth, but in the Capability Ticket system this will not happen. In the cases of Capability Tickets each process will have a specific set of access rights. Again this will not happen with the ACL cases where every process will be executed by a user who would be having the same rights.
To sum up a Capability Ticket will allow the users to lend out or give tickets to the other users. But in ACL, the system does not allow any transfer of rights.