No, there currently is no way to model this due to the hardwired permission checks in the packages.
Don is working on a way to extend a package, and the most common one to extend would be acs-subsite.
With that you could create admin or "management" pages that handled permissions that made sense.
In general many of our users could use a subsite administrator that could manage the subsite without breaking anything.
You could customize the appropriate pages, move then into a different directory (/admin/ always requires admin privielge) or change the site-map etc to require site wide admin privileges.
