This post is from the WWDC26 Virtualization Q&A.
VM are quite interesting options in a BYOD environment but im not able to enforce a proper segregation between VM and Host.
Examples: If the VM is MDM enrolled the Host can access the VM Disk quite easily
If the Host is managed a VM can be used to bypass Network security
Is a mdm enrolled VM a scenario you have on your roadmap?
Enrolling VMs in MDM is not currently supported. Please file a request at https://developer.apple.com/feedback-assistant/ and describe your use case. Thank you!
See https://developer.apple.com/forums/thread/712889 for some tips on filing feedback requests!