Oddly enough 1Password could innovate productively here: use some market clout to push for a standard way for password managers to do automatic password rolling without user interaction.

Imagine a world where a standardized protocol let a company put out verifiable "we've been hacked notice" and my password manager would just take care of it next time I opened it (or throw a prompt or something).

Doubt this is going to happen though.