Hiya,
Depends, if your making sure your 'friends' always use latest php versions, make sure their website is up to date and patch security issue as soon they come out, you use Maldet and CSF, Brute force and all other matters to help you as admin of the server....
Then you might consider to leave as is, but on the other hand, CL is also restricting resources/usage, and provides a little more safe environment. If the server is compromised then you need to replace the server, there is no 100% cleaning possible. You must replace the server and before doing so find the culprit of the hack and be able to clean that account with risk of new server getting infected...
I personal think with 'shared' hosting CL can help you.