Having read resedit's linked page on the problems with (and solutions to) apple's OS X consumer sudo implementation, I believe he does raise a point you have not addressed in your commentary.
A simple scenario, given by resedit, could be the following:
A person has a single account on their OS X machine, of necessity with admin access.
That person uses telnet or ftp to connect to that machine.
A hacker (script kiddie, BOFH, whatever) sniffs the login/password used for that connection.
The hacker now has the password to an _admin_ account, and with apple's implementation of sudo, that means root access.
Essentially, sudo asks for an admin password, which this hacker now has. 'su --command=' or reasonable substitution therof, on the other hand, asks for the _root_ password which the hacker still does not know.
This does not seem an unreasonable scenario to me, and I was surprised to see someone with senior status in this forum speaking with the tone you did without addressing the poster's seemingly legitimate concerns.