VMware vSphere ESXi 6.7
VMware vSphere ESXi 7.0.0
VMware vSphere ESXi 8.0.0
VMware vSphere ESXi 6.0
VMware vSphere ESXi 6.5
ESXi is not a General Purpose computing environment. ESXi provides for console functionality (for initial configuration, troubleshooting, and Technical Support) via the Direct Connect User Interface (DCUI) and Tech Support Mode. These strongly controlled interfaces provide GP-like console functionality augmented for security and trust. All binaries executed in ESXi are signed, keyed, or validated by strong controls. There is no facility to interpret code at runtime and the compiled modules are subject to both the controls for execution and a default-deny policy (for unsigned code), integral to the kernel.
Based on Regulatory Compliance, VMware believes that the customers should categorize ESX/ESXi hypervisors as they would for other network based appliances and treat them accordingly. By following the Best Practices outlined in the vSphere hardening guides, you can be reasonably assured of the security and integrity of the ESXi host's management interfaces. As VMware transitions from ESX to ESXi (and away from the general purpose OS running the COS), the need to run Antivirus/Anti Malware solutions to protect the hypervisor is even further diminished.