With role base access controls, you can grant access to :
VM Administrators - people who can manage VM, login to it, install patches, shut down or restart it, modify the configurations etc.
Network admins - people who can manage virtual network like filter or route network traffic, restrict access etc..
So it says that we can give access to different people based on their job and resource they handle.
Please don't forget to Accept Answer and Up-vote if the response helped -- Vaibhav