Now it's possible to turn on "mask passwords" in each job separately. It could be good to turn it on globally so it wouldn't be possible to turn it of if you don't have administrator privileges.

e.g. I have properties file which contains password. It's possible to create job which do cat on this file. For now only solution is to fully remove others to configure and create new jobs.