If you want to completely prevent the eval'd code from accessing outside variables, maybe you should run it with the Safe module.