We've heard this request before, and in the next release after 5.0 we are working on a slightly different model that acheives the same thing wihtout the need for sudo. Anyone who logs in will effectivley be root (i.e. getuid() will return 0), although for logging and audit purposes you will see who as logged in, and of course they are using their password.
The reflects the reality of the situation that you can effectively do nothing on the host as a non-root user. Once you go "underneath" the API by logging in directly, you can consider the host compromised.
What we're really interested in is any part of the API's that are deficient to the point that you need to resort to logging in directly.