From Debian package 0.2.20100524-9

  * Allow xenconsoled_t capability sys_tty_config and create unix_dgram_socket

Index: policy/modules/system/xen.te
===================================================================
--- policy/modules/system/xen.te.orig
+++ policy/modules/system/xen.te
@@ -368,10 +368,11 @@
 # Xen console local policy
 #
 
-allow xenconsoled_t self:capability { dac_override fsetid ipc_lock };
+allow xenconsoled_t self:capability { dac_override fsetid ipc_lock sys_tty_config };
 allow xenconsoled_t self:process setrlimit;
 allow xenconsoled_t self:unix_stream_socket create_stream_socket_perms;
 allow xenconsoled_t self:fifo_file rw_fifo_file_perms;
+allow xenconsoled_t self:unix_dgram_socket create_socket_perms;
 
 # for /usr/lib/pt_chown
 libs_exec_lib_files(xenconsoled_t)