I think his point is that multiple people use the same login ID, and therefore can access the history of that ID. I'm not sure how to prevent writing to history.

You also have another problem on your hands -- anyone can just get your username/password from a process grep. Many programs have a way of getting around that problem, like sqlplus.