Thanks for the reply Snowman!
*scratching head* I am still trying to figure this out because in our environment Lion and Mountain Lion have root account disabled...we actually do this with a shell script that LANDesk deploys. 
So is the agent actually using root and bypassing what we have or using something else underlying in the system? I hate to be a pain but we are documenting our applicances and processes. This is vital information for our organization.
Thanks!