I could see this being fine advice if one factor is already a hardware device, but it's weird advice if he means this generically. I suspect he argues general purpose computers are inherently more vulnerable than dedicated hardware for private keys.