well in my quest to do some "insightful" reading i landed up on quite a few articles regarding Crosssite scripting on the wiki. It gave a very good idea on the security loopholes that could unknowingly be open and with a potential to cause good damage to the business running on the server.
Working on a few sql perf tools came across something called a puma (internal to oracle) which rather than throwing up crude explain plans , explains the sequence of the query execution based on the driving table/index and is very extensive. There is absolutely no inference to be drawn by the person trying to tune a query on seeing the puma report, it is all there .