There are no excuses, this protocol is just terrible: it could have been made much much more secure without any kind of virtualisation or sandboxing.
For example, the kernel could be used[1] to store the secrets in memory and only authorize the userspace process that created it to read it; other processes could request access to a secret and only be given if you accept.
For example, the kernel could be used[1] to store the secrets in memory and only authorize the userspace process that created it to read it; other processes could request access to a secret and only be given if you accept.
[1]: https://docs.kernel.org/security/keys/core.html