Hi,
there's user matching support in iptables :
iptables -A OUTPUT -p tcp --dport 80 -m owner ! --uid-owner 0 -j ACCEPT
(beware, the line above allows all users except root to use dport 80, because of the !)
it should answer your quesiton... if you do not know what is iptables, then :
http://www.netfilter.org/documentation/index.html
Bye