The system log sometimes contains important information for troubleshooting cluster issues.
setfacl -m u:oracle:r /var/log/messages
On RHAT, the ACL is preserved so when logrotate is run, oracle will be able to read the new /var/log/messages file and the “old” ones (.1, .2, etc).