If they are going to install low level software on my computer they better be very sure it's properly coded.
Companies are often incompetant with security code. If you are expecting high quality secure code with consumer level software, you will often be disappointed.
Which is why going the full disclosure route prevents them from being insulated from their mistakes - otherwise, it becomes a moral hazard to keep playing nice with the approach to disclosure.
Instead, they ask for their interns to build the "solution" that makes my computer part of the Borg.
I really don't feel compassion in this case towards the company (towards the users is a different story, no doubt)