First, thanks to karstas for posting this in the iOS 7.1.2 might be coming this month thread. I'm surprised this isn't getting more coverage. If certain conditions are met the bypass allows someone to access the app that was open when the iDevice was locked. This includes reading e-mail that was already downloaded from the server and sending new e-mails. To prevent it, disable the Control Center from the lockscreen.