From Debian package 0.0.20080702-11

Allow clamd_t to search postfix_spool_t for creation of Unix domain socket
in the sub-directory, this is ugly and a little bit wrong but makes it
easier to configure Postfix

Refers to amavisd socket?

Index: policy/modules/services/clamav.te
===================================================================
--- policy/modules/services/clamav.te.orig
+++ policy/modules/services/clamav.te
@@ -76,6 +76,10 @@
 allow clamd_t self:tcp_socket { listen accept };
 corecmd_search_bin(clamd_t)
 corecmd_read_bin_symlinks(clamd_t)
+optional_policy(`
+# to allow creating the unix domain socket
+	postfix_search_spool(clamd_t)
+')
 
 # configuration files
 allow clamd_t clamd_etc_t:dir list_dir_perms;