> Dereferencing a nullopt however, gives you an uninitialized value as a pointer, which can be a serious security issue.

Is this really true? Surely it just gives you an uninitialised `int` (or whatever is in the `optional`)?