How come SSL type field is not encrypted?

All fields of SSL record header are not encrypted but its content is taken into account for MAC calculation. So if an attacker changes them, that record will be signal as invalid once MAC is verified by the receiver.