Why hasn't anyone sat down and designed an OS to be bullet proof? I don't mean piling security on top of *nix, I mean a ground up project with virtualisation/sandboxes for everything, whitelists, system wide input validation and read only partitions for the core OS etc.

The current war on Malware is about as effective as the war on drugs.