On Linux servers where security is top priority adding software like Fail2Ban & SFTP instead of plain FTP is a must in my honest opinion.
here is a link to MSS forums
As a website owner or webhosting provider, I would like cPanel to include SFTP support for virtual users, rather than only the primary cPanel account's user, to allow me to disable FTP access on my server.
Context, from cPanel:
An SFTP subsystem for virtual ftp users would require quite a bit of work due to the nature of SFTP. We wrap around the SFTP subsystem that comes with OpenSSH and the big drawback to this is that it requires a valid shell in order to work properly.
For situations where encryption is needed, FTPs is a good alternative to use with virtual FTP users as they don't need to have a valid shell and all authentication/transfers occur on an encrypted fashion.
However if SFTP for virtual users is something you'd like to see in our product, vote here.