[mmilgauss]

I meant for people using it as their daily driver operating system (not servers).

Most linux enthusiasts know a bit more/are interested in technology so they would be likely to engage in better security practices than a typical "home user" using Windows. In addition features like package managers and actually functioning permissions systems help as well (how long has Windows had public UAC bypasses?)

Of course you're correct and most servers run linux and get hacked every millisecond otherwise though because they don't keep them updated.