As a developer I completely understand. I too maintain a very tight reign on my source code (as it's my livelihood at stake).
On the other hand there are two risks that as a PR/Marketing guy you can understand well... as you've already as it relates to your company and it's reputation... basically brand dilution or destruction.
This is a pretty fine line to walk here. While I'm perfectly fine (for personal use and that of my friends) in being able to wipe and reload at will. With something carrying the BC logo and name... but allowing anyone to wipe and 're-purpose' it remains a potential problem in another scenario. Suppose someone (who is not honest and supportive of BC long-term) purchases a number of the cards and loads a keylogger or similar malware on it, or even more simplistically simply dumps the private keys associated with the wallets... and then hands them to people who then load them up... and wake up to missing BC - the damage would be smaller than a 'Mt. Gox-ing' but could still represent a threat to the brand itself.
On the other hand if the code was 'vetted' by Maarx and Rat4 - perhaps with a MD5 on the site which would be checked to verify that the entire contents of the card (other than blockchain and wallet.dat obviously) hadn't changed since issuance. That might go a long way to assure holders that it was safe to load value onto the card.
Something to keep in mind at least, as although today 1,000 BC might seem like chump-change... it might be a good used car's worth in a year.
The code being vetted would not prevent the scenario you just described.
Easy solution, tamper proof sticker on the packaging