You can find a nice write-up on the Intel CPU vulnerability here.
“Testing also showed that an attack running on one virtual machine was able to access the physical memory of the host machine, and through that, gain read-access to the memory of a different virtual machine on the same host.”
It seems that mitigation of this vulnerability could have “Up To 30% Performance Hit In Windows And Linux”