My understanding of the latest (WPA2) WiFi security is that each client creates a private channel with the access point – so it's totally up to the access point whether to trust, or route, anything any client says. That would suggest resistance to ARP poisoning is possible, at least. But I could be wrong, hence the question.