The Californian company said that for the first time since the list's inception, 'password' had been unseated by '123456', and that the results show many people continue to put themselves at risk by using weak, easily guessable passwords.
Some of passwords in the top ten included 'qwerty', 'abc123', '111111', and 'iloveyou'.
Splashdata CEO Morgan Slain said that seeing passwords like 'adobe123' and 'photoshop' on the list offered a good reminder not to base passwords on the name of the website or application.
"An interesting aspect of this year's list is that more short numerical passwords showed up even though websites are starting to enforce stronger password policies," Slain said.
The company compiled the list using online files that contained millions of stolen passwords.
In a blog post, available here, Splashdata outlined a few tips on how to make a more secure password.
"Use passwords of eight characters or more with mixed types of characters. But even passwords with common substitutions like 'dr4mat1c' can be vulnerable to attackers' increasingly sophisticated technology, and random combinations like 'j%7K&yPx$' can be difficult to remember," the company said.
"One way to create more secure passwords that are easy to recall is to use passphrases -- short words with spaces or other characters separating them. It's best to use random words rather than common phrases. For example, 'cakes years birthday' or 'smiles_light_skip?'."
SplashData's Worst Passwords of 2013