It's not too hard to obfuscate the actual domain for non-technical users, leading to easier phishing. By only displaying the actual domain name, it's much easier for people to see that they aren't on the site they expect to be.

IMO, the tradeoff of reducing phishing effectiveness is worth the small amount of additional effort needed to find this bug.