You should verify that the Docker server certificate file (the file that is passed along with the --tlscert parameter) has permissions of 444 or more restrictive permissions.
Recommended Mitigation
Verify that the Docker server certificate file permissions are set.