I see this having some advantage. Kernel privileges are greater than traditional root.
This is one of the reasons why setting kernel.modules_disabled=1 with sysctl would be a good idea.
Edit by Patrick: enforce kernel module software signature verification [module signing] / disallow kernel module loading by default