LE Secure Connections with Debug Keys (or one known private key)

It seems like it would be possible to decrypt the traffic even if using LE Secure Connections if one of the private keys is known. Like for example if either device was using the BLE Debug Keys or if the user was able to extract one private key through another means and enter it as an argument. Do you think this sounds plausible?