Actually seems quite reasonable, wouldn't want the employees getting a feeling that the security rules don't apply anymore. They would be wise do declassify the leaked documents, what's done is done and trying to pretend otherwise will only server to delegitimatize the rules.
This stance made more sense with the WikiLeaks cables, because declassifying would confirm that they were real, and there was a lot of content discussing foreign affairs. But with this leak, they haven't confirmed that the documents are genuine, but they have confirmed that the subject matter is which is really "good enough."
