I don’t know whether there is a better WP-CLI way or not, but you could write a simple script that recursively crawls your uploads directory (or it’s subdirectories) and than check the absolute paths (URLs) of those files and compare them against guid
column in wp_posts
table.
If your file is not there, WordPress doesn’t know about it and it probably can be deleted.