Do you think HP ILO and IDRAC Dell management should be included in the scan scope?
This isn't really a question Qualys can answer for you. This is because it's dependent upon how your organization categorizes threats and it's tolerance for risk. Also, it depends upon your network topology and how you've deployed the management network. If the mgmt network is completely segregated from all other networks, you may not consider it worthy of being scanned. However, if it does connect into other networks, you'll may consider it more risky and needing to be scanned.
To help you answer this question, I've summarized a few sample questions to ask yourself that help drive you to the answer. This isn't meant to be a full list of questions, just a sample to help get you thinking about program management rather than the technical pieces of the scan.
Hope that helps.
Retrieving data ...