Contacts/members with full administrative authority in particular, and to an extent perhaps, others with lesser administrative authority should have a wall erected between being just a normal member and acting as an administrator.

When I login as a member, I don't want to be in administrative mode. This mixes roles, and these roles must kept separate. When I want to go into administrator mode, WA must require me to explicitly request that role/mode (eg, a separate password, or some other mechanism).

I've also noticed that WA does not automatically logoff users after a period of time. In particular, for those with administrative authority, or in administrative mode, it is a security breach to allow such connections to remain open and active.