middle man and session hijacking traffic sniffing with https

middle man and session hijacking traffic sniffing with https

I didnt had any other way else than providing this video to ask my
question. Please only respond if you know whats happening in this short
video.
http://masoodahmad.com/02.Session-Hijacking-Pt.2.mov
how the hell can the email / password be visible in this middleman attack
when the user was using HTTPS gmail website ?
no certificate tampering, there was no setup. just implied the target,
dns, and gatway ips.
2- Will this be similar in case of ssh login on linux?