One of the advantages of communities is rapid discovery of exploits and their correction.
Storing passwords in plain text has been a bad idea since forever....
The fact that SSO does this practically means that ESXi Management Network, vCenter and SSO would need to be on an "air gap" network to be truly secure. After all, if I could exploit the SSO server filesystem; I could acquire the keys to the kingdom!