Is there any problem running a production Vault Cluster on Kubernetes, as long as the appropriate dials are tweaked to ensure “single-tenancy” of the Vault nodes?
None at all, this would work perfectly. There is an official Docker image
https://hub.docker.com/_/vault which has a hardened container.
Also we have a new Helm chart which hopefully will make your life a little easier from a configuration perspective.