It runs it's own microkernel-based OS to isolate individual tasks/functions to mitigate the impact of one of those tasks having exploitable bugs.
eNclave eXclave
The best info I've been able to find about the architecture is https://www.df-f.com/blog/ios17 Is there more info available, yet? Might this be related to Apple's recent sponsorship of seL4--https://sel4.systems/news/#member-apple?