Password reset for admin?

[Mike]

Why is it that *any* user can, using the password reset or "Forgot
Your Password" can actually force "admin" to change the password?  Is
there a way to turn this off?