Ability to lock down UDP socket
Provide socket options for locking the local address / remote address / socket options, so you get a very limited file descriptor. You can then provide such a file descriptor to a sandboxed process and know it can't communicate with the wrong remote.