Of course you should never store plain text passwords. Have a look at this interesting discussion.