Agreed. MacOS has much stronger security despite Apple not waiting for its users to get pounded by malware. I think it has something to do with basic philosophy - MS supports corporate certified malware. If adobe creative cloud needs a feature that uses 25%cpu 24-7 with telemetry and maxed permissions, MS is gonna support it.
You're conflating telemetry with permissions. macOS doesn't attempt to stop apps reporting how they're used, why would it? Instead Apple gathers such data and then keeps it for itself, requiring devs to go via Apple to get it.
macOS does have stronger security, but it's security in the form of stopping apps accessing files until they need permission and things.
