The Center for Internet security suggests the following parameter be set in Oracle 10G databases:
13.02 Auditing Trap autonomous transactions is enabled. This will ensure that audit captures actions performed by users even if they are later rolled back.
How do I verify that this is set in our production database?
Ask them ... and while you are at it ask for an explanation of it is about an anonymous transaction running that makes it a security threat.
I haven't a clue what they're talking about and it is likely they don't either.