Apple has issued a security update for its Xsan file system, an advance file system used on clusters of Macs and on Xserves. The update resolves the following issue:
Screensharing via the Xsan Admin application could present an error dialog containing the user's name and password. A person who can view the user's display could see the user's credentials in cleartext.
The update is available here.