eval "$data_from_tainted_source" has both security and performance issues.
eval { block_of_code() } does not (at least not due to the eval itself), and die'ing in an eval then checking $@ is a common method of 'exception handling' in perl.