Well, yeah, but the baseline for outrage was with the feature existing, not with it being secure or not. There were a lot of people making the case that anybody who can open your computer because they have your password (abusive partners included) could then have a lot of access to your activity. That seems to carry over to this feature, too.
So I guess the question is, is there a "doing this right" version of this or not? You seem to implicitly be on the yes side, I'll be curious to find out if that's the majority.