In Kubernetes environment, I suppose that root user should not be allowed by default to mitigate the risk in case a host OS accessible from inside a container. This setting
