You can create a baseline that only contains the critical patches. I would try to start with a baseline that contains agents and other tools.
If you exclude Nic drivers, teaming software and HBA drivers you should be able to update servers without production impact.
The alternative is to select them by hand but a mistake is easily made. I don't see you using baselines, don't you have these?