All security decisions trade increased protection against some threat for reduced functionality or performance or convenience.
When a new security feature is developed, or a new threat becomes of concern, someone needs to analyze the trade-off and make a decision.
Sometimes, the answer to questions like these is simply that no one has done the analysis. Or, sometimes, at a quick glance, the threat doesn’t seem to be worth the cost, and nothing goes further.
I’m not sure if that’s the case here, but there are a lot of useful reasons to trace a process, and as I understand it, it’s vital to Wine (and therefore all of those Steam games). At the same time cross-process tracing is a relatively narrow threat.
As I have further researched the matter I find the SELinux policy is really the control on ptrace Using Policy Manager there is a boolean that can total deny ptrace to run but that negatively impacts ability to trace bugs and trouble shoot.
There seems to be other restriction in SELinux preventing just any running process from running ptrace. Now unless I’ve missed something I’m feeling more assured about Workstations security.