MacOS Sandboxing


The docker website mentions that Docker For Mac has

Native Mac security with support for the MacOS sandbox security model

Also, the beta announcement mentioned that

Docker for Mac was architected from scratch to be able to fit the OS X sandbox security model and we are working closely with Apple to achieve this.

However, the entitlements embedded into the code signature do not explicitly enable regular sandboxing (as appears to be set to false) Does anybody know the current status of sandboxing under MacOS ?