In OS X, how does manually sandboxing an application from the internet compare to blocking it with Little Snitch?
For most purposes, the following is good enough for most situations:
sandbox-exec -n no-network command
However, it's not more effective—there's numerous ways of apps escaping the sandbox. Little Snitch also lets you be more specific with what you are blocking—specific ports/etc.