It doesn't seem like a huge leap from sandboxing to containerization.
They also might consider supporting BSD-style jails.