I have found that sometime scripts are purposely made not executable may be to avoid accidental running as they are meant to be run from cron or some other ways. So it is done not as a security mesaure but as a precautionary measure.
I agree that sometimes that is true and is a good precaution, but in my case, the scripts weren't marked executable because they were copied over from a Windows machine which doesn't preserve the permission bits.