Just about everybody does this - loading unneeded software on exposed servers or implementing SANS and switches where they're not needed. Every piece of software you add to a system, whether running on the main processor or on associated gear, adds vulnerabilities. The rule is simple: if it's not necessary, don't load it, don't use it, and don't worry about it.
