One Marketo instance should have, ideally, as many API-only users as it has connected apps. An app is a distinct development project.
Projects hosted on different servers are almost always different apps by this definition. For example, an app that downloads daily activities and an app on another box that uploads list imports are different apps.
Multiple connections from the same piece of software running on the same server are probably not multiple apps. For example, if you have a PHP server making multiple upload connections to Marketo each day, that's one app, even with different connections and maybe different threads.
Two distinct apps using the REST API: two API-only users.
Three apps using REST: three API-only users.
I don't know what kind of problem you are expecting, but the problems happen when you don't have multiple users. You have to be able to police resource utilization by each user. If a process turns out to be using runaway API calls, you must be able to cut off that process instead of cutting off all your processes.
Even better is if you use different API users and pass all your calls through an API gateway, so you can place a max # of calls per user and more closely track usage trends. You probably are not technically ready for this, but it is the most enterprise-level approach.
I hope this is clear now as I don't know any other ways to rephrase it.
.png)