Re: "...recommends blocking telnet and SNMP..."
Just a guess but... in all the cases I've seen, ports/services useful in the design and test phases (often including default hardwired back doors) are left enabled when the RTM leaves the building. Those engineers are pulled off to fight another fire before cleanup is complete.