First of all, sometimes it is not possible, i.e. BSD-syslog is limited to 1024 bytes; if you want to log longer message, multiple lines are necessary (I just hope ESXi is using IETF-syslog). But what is more important, this is clearly job for log-collector.
I do not know SIEM, but for example syslog-ng has option "no-multi-line". This option disables line-breaking. Log-server then waits for the whole message and reconstructs it back to single line. This can be easily done even with simple filters, as every new log-message begins with <PRI> (priority value).
On the ESXi-side these multi-line messages could be maybe disabled by using tcp but I'm not sure it can be done somewhere in settings.