Thanks, @MHM Cisco World  for your response.

My worry is now that does this mean each time the failover link fails, the only way to be able to deploy is to break the HA pair and re-add the FTDs in HA when the failover link is repaired?

but Cisco FW HA is not depend only to failure link down to start failover process

it use Data interface IN and OUT to monitor mate FW before start process, 
I think what you face is something relate to SW interconnect both FPR, 
the FPR down the failure link and data interface that FPR use as monitoring interface.  

Correct. However the problem is the failover link itself. The firewalls in HA pair are in separate locations connected by a fiber link.

I think the reason why the FMC wouldn't be able to push the changes when the failover is broken is because it wouldn't be able to know to which active device the changes should be pushed. Did you check from the logs why the failover link got broken? if not I would try to find out the root cause of why the failover link gets broken and try to fix that issue. Also, what version of FMC and FTD are on?

Yes that's my thinking too. So the scenarios is that we have the firewalls at different locations and the link connecting them is a fiber.
There was a fiber break that disrupted the failover link.

If you have multiple links between the two locations, you can configure a port channel for the HA links, in that case you will have some resiliency if a link goes down.

Cisco FW HA design not depend on Fail over Link only to detect mate down, it also use data interface INside and OUTside to send some heart beat to detect Mate down. 
as I mention before I think fail over link and data link share same physical link when down all fail over and data interface is down.

The FTD dedicated management ports will still be with different IP addresses regardless of the failover state.