The security issue comes in when you ship the private key - if you are following best practices - won't the private key be different for each domain / managed in a better way?
So, now you're going to give each member of your team a way to authorise valid certificates for your domain? Great, I don't want to imagine what your HR/security vetting process will be after the first abuse of that power.