A flaw was found in kubectl that leaves http-cache files with read/write permissions for any user. In conjunction with a non-default value for --cache-dir, this may lead to the cache content being placed in a location accessible to other users on the system.
Do not use --cache-dir, or ensure that --cache-dir is not set to a location that other users have access to.