When we see PIM trace events with seaudit -tr command, we will see the password which is not encrypted.
AC>cu root audit(trace)
Please login to the PIM box with root user on another session(SSH).
#selang -c 'eu testu1 password(admin01)'
#seaudi -a -tr
You will see the following event like this.
P TRACE root XXXXXXXX root root ARGS /opt/CA/AccessControl/bin/selang 994
EXECARGS: 'selang -c eu testu1 password(admin01)'
There is no code which is masked for trace events.