You can use bubblewrap to create isolated tmp directories accessible only for a specific shell.
$ bwrap --dev-bind / / --tmpfs /tmp $SHELL
This can be used, for example, to restrict access to sensitive files from outside processes while still being able to freely access them from a specific session.