Remove the ability of a user to use a specific object-level privilege, or to grant the privilege to other users.
If you revoke a privilege from a user who has been granted a privilege with the WITH GRANT OPTION clause, then everyone to whom that user granted the privilege also has his or her privilege revoked. For example, you granted User1 the SELECT privilege with the WITH GRANT OPTION clause. User1 then grants the SELECT privilege to User2. If you revoke the SELECT privilege from User1, it is also revoked from User2.
The REVOKE command applies to the object-level privilege itself, not to any administrative right granted on the privilege. Therefore, you cannot revoke administrative rights only and leave the object-level privilege intact. To correctly remove a user's administrative rights only to an object-level privilege, you must first revoke the privilege and then regrant the privilege without the WITH GRANT OPTION clause.
This example assumes that Joe has been granted the right to both perform deletions on the Sales table, and to grant the DELETE object-level privilege on the table to other users.
This statement revokes all DELETE object-level privileges on the table Sales, which by definition includes any administrative rights:
REVOKE DELETE ON Sales FROM Joe
This statement regrants the object-level privilege only, with no administrative rights:
GRANT DELETE ON Sales TO Joe