It appears that any user with access to the job config page can see the password contained in the TFS portion of the page by simply opening that page and viewing source. Is there some workaround for this or way to encrypt? This would be a show-stopper in our environment.

We are using the AD plugin. The TFS login is a windows domain account.