I think this article asks some good questions about how to implement security in Virtualization and whether small code means more security.

 http://www.infoworld.com/d/virtualization/top-security-concerns-in-virtualization-environment-603