Right, but how do you do disk imaging (for example) if the OS doesn't give you access to the entire drive? The OS could say "OK, you can modify any drive's boot area but the one I'm on", but that doesn't help if you're booting from another drive and using chainloading.

Hell, you can flash motherboards from an OS... writing to the boot area is just one example of many 'giant holes in your security'.