It's being discussed with the admins for mobile and website but there are 90% of chance that special characters are going to be "avoided".
By "avoided", I mean that you won't be able to type bad characters in form but you will still have to be careful with what you are typing. Maybe a "show password" option next to the password field would be helpful in this case.
When I have more informations about this issue, I would come back to comment this issue so you guys are aware of what was done.