dnsmasq inside of pod can't listen to network

Dnsmasq image is used for some test cases, after the try to update rkt to 1.6.0 some of tests are constantly failing on centos and ubuntu. It looks like something is wrong within rkt.

Short investigation:

[root@testing-packages-bento-centos-72 ~]$ /usr/bin/rkt run  coreos.com/dnsmasq:v0.2.0 --interactive --exec /bin/sh
....
$ /usr/sbin/dnsmasq -x /var/run/dnsmasq.pid
dnsmasq: failed to create listening socket for port 53: Permission denied
$ netstat -anp
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name    
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags       Type       State         I-Node PID/Program name    Path
unix  2      [ ACC ]     STREAM     LISTENING      93451 -                   /run/systemd/journal/stdout
unix  2      [ ]         DGRAM                     93453 -                   /run/systemd/journal/socket
unix  3      [ ]         DGRAM                     93416 -                   /run/systemd/notify
unix  2      [ ACC ]     STREAM     LISTENING      93418 -                   /run/systemd/private
unix  2      [ ]         DGRAM                     93432 -                   /run/systemd/journal/dev-log
unix  2      [ ]         SEQPACKET  CONNECTED      93278 -                   
unix  2      [ ]         SEQPACKET  CONNECTED      93274 -                   
unix  2      [ ]         DGRAM                     93583 -                   
$ whoami
root
$ /usr/sbin/dnsmasq -p 100 -x /var/run/dnsmasq.pid 

dnsmasq: failed to create listening socket for port 100: Permission denied
$ /usr/sbin/dnsmasq -p 1030 -x /var/run/dnsmasq.pid 

dnsmasq: failed to change group-id to nobody: Operation not permitted