Notes:
When UML is run in a security application such as a jail, sandbox, or honeypot, the desire of the sysadmin is that the user inside the virtual machine (who can be expected to have root privileges in there) can not break out and execute arbitrary code on the host. Since anything of importance involves making system calls, this is translated into the requirement that the user inside UML not gain the ability to execute arbitrary system calls on the host.