A minor but potential security hole.http://jira.jboss.com/jira/browse/JBAS-2413i.e. if somebody has access to the logging configuration and the server log,enabling trace lets them see passwords.