Number 2 is by design. Running as root is extremely dangerous, and passwordless sudo is not much better. You can, of course, allow sudo without a password by editing the /etc/sudoers file, but be concious of the security implications (any program you run would essentially have full access to everything, without you ever knowing).