It has to be plaintext because there is no overlap between Linux system user passwords and email protocol support. But, assuming you use TLS (via STARTTLS or SMTPS) for client connections, the password does not travel in plain text, it is only plain at each end.
The only way to avoid that would be to not use Linux/UNIX system users and instead use a dedicated mail user database (which I generally recommend against).