"I mean if it's easier to find out embedded passwords within scripts. Please let me know how?"
there is absolutely nothing "easy" about this task, as there are many possibilities to deal with.
Consider that you'd need to locate every text file on the system (that part *is* straightforward), then you'd have to be able to determine if it's a script (can't rely on #! line as it's not manditory) nor can you rely on its executable status (as a plain text file can be "sourced" as in ". ./my_text").
then you have to figure out if a something that looks like a password is in the script, and that isn't straight forward at all.
Consider that an "expect" script might have something like:
expect "Password:"
or
expect "assword:"
or
expect "word:"
any of which would/could be followed by a line that contains the password to be sent.
then consider a scripted ftp in a "here-doc", as in:
ftp that_server <<-EOF
myuser
mypass
cd /dumb
put dumber
EOF
the password is there, but how do you know where / what to look at?
You'd almost have to look at every single text file individually. In any case, this is not a trivial task.
