Not sure if this is the right way, but I would go with a security first model.
MySQL / MariaDB can have separate users and permissions per user per database.
As We have something like this, you would create a master database blueprint, from there you can export and import the schema to a new mysql instance, add your own permissions and point that lucee instance at that database.
You can control all of this via the Application.cfm/c
ie
application.dsn1 = customer1.database.or.server
application.dsn2 = customer2.database.or.server
application.dsn3 = customer3.database.or.server
So on and so forth