And some low level functionality is crucial (or at least damn important) for certain types of apps. What sounds like a "bad idea" to me, is to indiscriminately rule out entire classes of applications because something bad might happen.

So blurring the lines between browser sandboxed content and desktop applications will decrease security. Anyone remember the MSIE desktop integration debate?

How will Google manage this risk? The same way Apple does with the app store. Google will act as gatekeeper for downloading and installing packaged apps via the Chrome Web Store.

Is this perfect? No. Will some bad apps get through? Yes. But the security tradeoff is worth it to get apps that are more powerful and more useful.