Shouldn't VTRoot folder be restricted?

Comodo Internet Security - CIS Beta Corner - CIS
24

I don’t believe he was talking about the auto-sandbox.