The docker website mentions that Docker For Mac has
Native Mac security with support for the MacOS sandbox security model
Also, the beta announcement mentioned that
Docker for Mac was architected from scratch to be able to fit the OS X sandbox security model and we are working closely with Apple to achieve this.
However, the entitlements embedded into the Docker.app code signature do not explicitly enable regular sandboxing (as
com.apple.security.app-sandbox appears to be set to
false) Does anybody know the current status of sandboxing under MacOS ?