Interesting question indeed.
I did something very similar for a company I was working for some years ago. This was based on LDAP attribute maintaining the list of senders allowed to use distribution lists but this worked only because mail backbone (Mirapoint appliance was flexible enough to be customized to take in account this attribute).
With Postfix, this should be feasible too but I never tried. I'll try to have a look.