With a virtualisation-ready processor in its new phone, Apple can now start to move iOS in the direction of a hypervisor-controlled sandbox environment, perhaps using a technology like Microsoft's research OS Drawbridge.
Here the operating system component of a VM is tailored to the application it is hosting – minimising the attack surface of each secure partition. Combined with a fingerprint sensor to identify users, Apple has the tools it needs to deliver biometric access control, allowing devices to support multiple users, with files and apps for one user hidden from another using hardware encryption.
-- Chris Claborne