Your container will have kernel capabilities if you run it in privileged mode, but still it is considered good practice if you give a container minimum requirement.
Full container capabilities (--privileged)
The --privileged flag gives all capabilities to the container, and it also lifts all the limitations enforced by the device cgroup controller. In other words, the container can then do almost everything that the host can do. This flag exists to allow special use-cases, like running Docker within Docker.
You can provide specific capabilities using --cap-add flag. Check this for more info man 7 capabilities.