I don't know if disabling ACL is possible. It may be, but I don't have a clue how to do it. I have thought of a work-around, that doesn't disable ACL, but makes everyone a ROOT user, sort of.
The best way I can think to do this, is to follow the path of WinPE, where the only account that is functional is SYSTEM. So in the installer for Windows (the DVD or the USB key), you would change all references of TrustedInstaller (and it's SID), to that of SYSTEM.
I don't know how you would keep the ability to have multiple users, since I think there can only be one SYSTEM account (unlike the Administrator's "group"). Maybe by changing all references to TrustedInstaller and SYSTEM to a unique member of the administrator's group? I don't know if this would work though... it would have to be very thorough.
I don't think you could change all users to TrustedInstaller, because I'm not sure that TrustedInstaller is an actual user. It is a "security principal", whatever that means, and I don't think it has a user profile (SYSTEM has registry hives in system32\config, and I don't know if TrustedInstaller does).
ps. IMO, FAT32 is a more elegant (because of it's simplicity), and faster file-system than ntfs for smaller partitions (8GB and less). I wish to state this, and not argue this with dictator mentalities, that are unwilling to look up info for themselves, and would likely refute hard data if put in their hands.