Answer
Yes, if you grant a server access to sensitive data or credentials, it can exfiltrate data like any integration. The risk is controlled by permissions, isolation, and auditing at the server/gateway layer. Use least privilege and only enable tools you trust.
Nuances & Considerations
The biggest risk is overbroad permissions ("read everything" or "write anywhere"); start default-deny and expand slowly.