The following flaw was found in Jenkins:
Overall/Read permission was sufficient to access node monitor data via the remote API. These included system configuration and runtime information of these nodes.
Created jenkins tracking bugs for this issue:
Affects: fedora-all [bug 1418736]