• It does, when the bad actor is a program you run, and other open windows contain sensitive content.

    Here the bad actor is code being loaded as an extension to the compositor. A bit like a kernel module, which can bypass file access permissions if it wants.