2010/12/21 Miloslav Trmač:
If an attacker were controlling a process running with uid 0 and no
capabilities at all, and /bin/sh were 0555, nothing prevents the
attacker from chmod()ing /bin/sh to 0755 and overwriting it.  This makes
any attempts to change the file permissions rather pointless.

You don't even need to change permissions for root to be able to delete or change the contents of the directory.

Dick