You can hash the password before it gets stored in your database, and then use the same hashing algorithm to compare passwords. This way you (and all network admins) won't be able to see their plaintext passwords, and neither will anyone who gets into your database.