Just to save everyone some time. I submitted a cpanel support ticket about this because if you have frontpage module loaded you may end up getting a false positive on this.
For example, you may see : grep: /usr/local/apache/logs/fpcgisock: No such device or address
The sucuri article suggests/implies any response is bad.
From the cpanel support system they suggest:
Another way of checking for this would be the following:
strings /usr/local/apache/bin/httpd | grep open_tty
This method actually checks the binary itself, as opposed to relying on log files that are much more easily manipulated, than a binary file.