The lynx gem before 1.0.0 for Ruby places the configured password on command lines, which allows local users to obtain sensitive information by listing processes.

lynx doesn't properly sanitize user input and exposes database password to unauthorized users