The very fact that Apple had to add notarization on top of the preexisting Developer ID certificates proves that the price of the certificates wasn’t a barrier for malware.

The negative side effect of the price is that it incentivizes honest developers and users to practice riskier behavior, i.e., releasing and using software that it totally unsigned.