One thing I know about working in tech is that passwords get lost.
If steemit is going to make this passwords can not be recovered deal a cornerstone of its business model I can see a weaker version of their business model with a less secured password method and a recovery tool surpassing this site in popularity should it catch on.
Just my 2 cents.