In WHMCS (maybe only in older versions) client can set own password for the server/VPS product during order.

Client may enter special characters which may cause him being unable to access server or other issues.

Here is how to adjust order template to disable user setting own password and generating random password in background.

Edit:
/templates/orderforms/YOURORDERFORMTEMPLATENAME/configureproduct.tpl

Find something like:
Code:
<input type="password" name="rootpw" size="20" value="{$server.rootpw}" />
and replace it by:
Code:
<input type="hidden" name="rootpw" size="20" value="{php}$rdmpw = substr(md5(rand().rand()), 0, 10); echo $rdmpw;{/php}" />
Save and test ordering, password field should disappear and password be generated on background and then sent standard way to user once order is paid.