I'll chime in as well, that it is really bad to run this as root. It is perfectly possible to start the rosrun process under a different user from within an init script, in fact this is how this should be done.
running rosrun or even worse roslaunch with root permissions would be a huge security vulnerability.