Not coding the ciphers parameter in server.xml, hence looking for the actual list of ciphers(not cipher categories) which are selected by the default setting.

Common Components and Services for z/OS 15.0 - z/OS supported releases - 

Unfortunately, there is no routine to get the full list of cipher suites that a running Tomcat server could potentially use. There's also too many variables for there to be an exact list of default active ciphers in documentation.

In CCS Tomcat, the output can show a list of disabled ciphers by adding this to TOMENVPR:
IJO="$IJO -Djavax.net.debug=all"