not a security issue yet as it is only in a beta and the window of opportunity is really really really small

but the setup wizard writes an admin password to a file before it sets appropriate permissions on the file.