I'm sure they are smart enough to set up permissions do everything via stored procedures. Besides, what are the odds someone would actually do a DROP DATABASE without knowing? It's not the kind of thing you just accidentally do...
I did an unconstrained DELETE FROM TABLE in a production DB one time.
Luckily it was Oracle and I was able to kill the connection which caused the TX to roll back...