@davep99
Yeah, but that just obscures it on the rendered input field (e.g. "•••••••"). The password is still in plaintext in the page source, leaving it readable to anybody with half a brain. Deleting print(get_option('smtp_pass')) from the default value fixes this, although it does force you to input the password if editing the page, which might not be a bad solution.
-PaulMighty