Order ID

Hello, i am still testing out my new marketpress plugin and have found out that say for example user 1 purchases something and has an order id "1" and then user 2 has an order id with "2" while testing it out i have found out the anyone with the correct order id can enter it into the address bar and can view their personal shipping information in the order confirm page, is there something i can do to stop this as i feel it is a breach of privacy?