It was determined by design. If the sandbox were trivial to bypass, why have it at all? The sandbox has to meet those conditions or it's a non-starter. And regardless, it would certainly be easier to audit the security of a small component like a sandbox versus the entirety of the Windows Defender application.
