A vulnerability in Firefox handling of saved passwords has been announced today. The vulnerability allows Firefox to autofill saved credentials no matter where they are being submitted.
Found last night just wanted to give everyone a heads up on this! I'll be posting more info in my blog as it comes up. But from what I see there is not going to be an immediate fix so the are suggesting that everyone clear their current passwords and turn off auto password complete.