"Standard I/O only" privileges under Windows

"Standard I/O only" privileges under Windows

I would like to setup an online judge (automated testing software; takes
potentially malicious code and runs a couple of tests on it) on Windows,
but such software is usually written for *nix systems, because it's much
easier to sandbox code there. Currently it looks like I'll have to write
it myself.
How to compile C++ code in a way to prevent any behaviour except
stdin/stdout?
How to run an executable in an environment, which allows it to do stdio only?
I've considered deleting some .lib and header files from Visual Studio
standard setup, but I'm afraid it's still techincally possible to execute
WinAPI calls.
Also, I could create one more OS user, set some rights in Administration
control panel, and runas executables from this user to obtain a "secure"
environment, but I'm no good in administration, and don't know if it's
possible to give the program stdio rights only.