I would suggest you submit a bug report through the support portal. I've done that years ago, perhaps if more people submit reports it will get priority to be changed.

For projects for which this is an issue, I've implemented a workaround: since you cannot change the write access a user has, all you can do is ensure this data does not get committed. To do that, add a before commit event handler to the Administration.Account entity (this assumes that all your normal users user Accounts and only MxAdmin uses System.User). In the event handler, use a Java action (see below) to check if the password has changed. If so, return false (this ensures the data is not comitted), otherwise return true.

This works, because through the client API, a user cannot commit without events. You do need to be careful that the user doesn't have access to microflows which commit an Account object without events.

Java code to check if a password has changed (input System.User object, output boolean):

// BEGIN USER CODE
List<? extends IMendixObjectMember<?>> changedAttrs = user.getMendixObject().getChangedMembers(getContext());
for (IMendixObjectMember<?> attr : changedAttrs) {
  String attrName = attr.getName().toLowerCase();
  if (attrName.equals("password")) {
    return true;
  }
}
return false;
// END USER CODE