marvin%ordb.org@??? is an address in your domain, that's
why it was accepted. As one would expect from your configuration as a
satellite system, the mail has been re-directed to
marvin%ordb.org@???.
Note that it hasn't been sent to marvin@???, but to the correct
destination for email with the original address.
However, there is the possibility that a) the mailer for caloga.com will use
the percent hack and expand that address to marvin@???, and b) that
mailer will relay it, because it comes from your machine and it trusts
your machine.
This possibility of a two-stage relay is nasty, because neither you nor the
system you forward to are doing anything wrong in isolation, but the
combination of the two has undesired effects.
Turning on the percent hack on your system will fix this for you, because
then your machine will immediately expand it to marvin@???, and realise
that it shouldn't relay to that domain.
Question to people on exim-users: do you think I should turn on the percent
hack in the config files output by eximconfig, to avoid this situation?