If your machine is listening on a public IP, and can be "hacked" on a completely valid TCP connection (which is the only kind TOR allows -- leaving out most of the tricks "hackers" use), then you've got bigger problems then tor.
I doubt most administrators care about the difference. The concern would be if such a module becomes a standard part of most servers, it would effectively take all static IP TOR routers out of the web and subsequently affecting the desirability of using TOR, wouldn't it?