If someone only has the SNMP Read-Only password they cannot find out or view the Read-Write password.
In addition, I recommend using access-lists to limit access to both RO and RW snmp access...
just put the ACL number after the snmp-server community "password" 5 <-- where 5 is an ACL that is defined.