webOS security

That sandboxing is not unique to webos. For instance, android would run application code sandboxed in the dalvik environment (typically), and this is sandboxed another time by the security model where each application has its own unix uid. You could also write parts of the application in html5, which switches the dalvik sandbox to the browser's sandbox.