No userspace can be wrapped quite nicely:

In fact we don't really need processes, just suitable environments set up for execution of code. For example, stop a lisp definition calling eval:

   (defun no-eval-wrapper (form) 
      (let ((eval nil)) (form)))

I've not tried this btw and it'll probably only work with scheme dialects.