To be more precise, current issue is:
Client sends WSA headers to WSA enabled endpoint.
WSA is optional in WSDL and CXF is picking up empty policy alternative
for endpoint and thus responding without WSA headers to the client.
It's expected that WSA headers are in the server response if client sends them and WSA is optional in WSDL.