With the different hosts and patch requirements, I'd suggest you create two patch baselines with VMware as well as the vendor individual patches. Update Manager isn't aware of what's included in a patch and only the vendor/patch itself could contain a logic to install itself on the proper hardware platform only, but I doubt this logic is included in the patch files.
André