When you select Alert, violations are reported to the console and the macros are allowed to run. When you select Block, the violation is reported and the macros are prevented from running.
When you add exclusions, you are allowing specific files to run on the endpoint without the need to report violations to the console.
For example, exclude \Work\Scripts
In this example, a script located in the C:\Work\Scripts folder and any of its subfolders is allowed to run.
You have successfully excluded scripts from being alerted to (or blocked by) CylancePROTECT Desktop when a Dangerous VBA Macro violation is detected. Users that are assigned this device policy would have the exclusions applied to their devices.
For more information about Memory Protection, see the Cylance Endpoint Security Setup Guide.