Are you asking is we support VMware? Yes - and Citrix and Microsoft virtual environments.
However, we don't use vShield - and we won't until it grows up a bit. vShield Endpoint today is a set of APIs and a device driver to offload file events to a security VM - which sounds great. Do all you virus scanning in just on vm, no need for an agent in each instance . . . . increase density, less to manage . . . .
Trouble is that vShield is just about "file events" i.e. scanning files for viruses - no host or network ips, no real time behavioral (i.e. Sonar in SEP 12.1) no client fw, no application control, device control, access control. So with vShield your giving up a lot of security. About 50% of our detections come from technologies other than tradional virus scanning - that is a lot of security to give up.
We are working wiht VMware on a next gen that will allow the advantages of vShield without compromising security - but it won't be in this release.
The main bottleneck to greater density is disk i/o. We did a lot to drive disk i/o in this release - reducing it up to 90% through sharing scan results, creating white lists out of gold images and through Insight. For tips on using SEP in virtual environments - take a look at my blog . . . https://www-secure.symantec.com/connect/blogs/configuring-sep-121-virtual-environments
The only vendor that supports vShield today for an agentless approach is Trend Micro - and their detection rates are so low with it that they won't let 3rd party labs test it (true story).