Honestly, the problem is that there is no security model. These drivers were never supposed to be exposed to untrusted code. We have a long way to go before driver vendors pull their heads out of their collective asses and start producing good code, especially since it will most certainly come with steep performance penalties.