In this thread, it was discovered that new users get created with a home directory that have read and execute bits set for the Other group in the directory permissions. This allows other users to view what is in a user's home directory. The expectation is that these bits are not set, and only the user themselves (and anyone in the same group) should have access to their own home directory. Other distros likewise do not create home directories with these permissions set like Solus does; only the owner and group has read and execute permissions; not 'other'.
I briefly tried to find where this was set, but couldn't come up with anything.