Jeff Iannucci talks about a role that might as well be sysadmin:
Based on the name, you probably can guess that members of the securityadmin role can make dangerous changes to the permissions of other server principals. What many folks don’t realize is that this role is simultaneously less dangerous and more dangerous than you might think.
Allow me to explain, or better yet show you what that means.
Click through for the explanation.