IBM Sametime Meeting Server 8.5.2 and 9.0 could store credentials of the Sametime Meetings user in the local cache of their browser which could be accessed by a local user. IBM X-Force ID: 113855.
https://exchange.xforce.ibmcloud.com/vulnerabilities/113855
http://www.securitytracker.com/id/1039231