Not to be pedantic, but you can see users passwords if you run a script that uses brute force hashing to find the password. You can also find lists of default username/password combinations on the web. Of course finding someones password should only be done to make sure that they are using a secure password.
Originally Posted by davey23uk
I should also mention, that because it is possible to brute force a password from a username and hash, that makes it vital that the DBA's keep the hashes hidden for all of the database accounts.
this space intentionally left blank