I know that saving passwords on local machine is not the wisest thing arround, but keeping them in winbox.cfg in PLAIN TEXT also sounds pretty stupid 
Will it be crypted in future releases? Just for security reasons…
How would you imagine that? If they are encrypted and decrypted by the same software, there is no point of that, and also note that the passwod is to be used for authentication, and this task requires a plain-text password to be available on the local machine
you can turn off save password - that is most secure
Ofcourse, the safest way is not to save the password at all… But, the password could be MD5 crypted … For example, windows dialup password is not stored in plain text
But, nevermind … nobody has access to my laptop
MD5 encryption wouldn’t help, as this is a one-way hash. So there’s no way to get the password back out of the hash. You could only check, if the password you entered is correct - but you should leave that decision up to the RouterOS machine