Just bought some e-bay Cisco switches, turns out they were from a large government agency and haven't been wiped. Password is visible in the config. Should I let them know? How?

Before anyone asks, it's not a sexy government agency, but it is a from a very large municipality as identified by the barcode sticker on it. It's still got the full running config on it, complete with the "7" type of passwords (that I have NOT looked up in the rainbow tables, and won't).

Should I alert them somehow? Or should I just wipe the thing and completely forgot about it?

Edit This is not a federal agency, it's a from a municipal agency of a very large US Metro area.