Passcape” in Microsoft’s Windows 8 operating system saves a log on password in plain text and allows any user with admin rights to see the password details. Windows 8 is the first operating system from Microsoft to support alternative non-biometric authentication mechanisms such as Picture Password and PIN. The original plain-text password to the account is still stored in the system encrypted with the AES algorithm, in a Vault storage at %SYSTEM_DIR%/config/systemprofile/Systemprofile/AppData/Local/Microsoft/Vault/4BF4C442-9B8A-41A0.
Source: https://thehackernews.com/2012/10/windows-8-security-flaw-logon-passwords.html