[throwawayboise]

I'll quote Theo deRaadt here, he was talking about virtualization but I would guess the same could be said of containers:

You are absolutely deluded, if not stupid, if you think that a worldwide collection of software engineers who can't write operating systems or applications without security holes, can then turn around and suddenly write virtualization layers without security holes

[richardfey]

Who was he referring to?

[wmf]

No one in particular. He's saying there are no perfect developers so no hypervisors will ever be perfectly secure.

[viraptor]

Which is a silly statement, because for all X, no X will ever be perfectly secure. That's why we have multiple layers available and containers and VMs are just one of them.