The suggested solution is to have process isolation implemented using software - namely asm.js-enabled JavaScript virtual machines embedded in a Linux kernel, which save you from needing hardware isolation, reducing overhead. Gary calls this idea "METAL".
I found little resource about the project, but there is a discussion on Reddit: http://www.reddit.com/r/compsci/comments/25w7vt/javascript_b...
And we had the discussion on HN too: https://news.ycombinator.com/item?id=7605687
Nevertheless an interesting topic, that doesn't deserve a downvote of my parent.