I have an office with 6 machines. Yesterday I updated
the root password on the boxes. Today, I was able to
get into ALL of them in Webmin using the OLD password.
Obviously the "Same as Unix" option for user's password
is reading the "current" password and saving it.
That's not what one expects just from reading "Same as
Unix". That option should mean "Always check against
the machine's current Unix password".