Hello,
You can apply an ACL to the inside interface to block all DNS traffic except from the subnet of your server VLAN. For example, if your server VLAN was assigned the IP subnet of 192.168.10.0/24, you can do something like:
access-list INSIDE_OUT permit udp 192.168.10.0 255.255.255.0 any eq domain (allows subnet 192.168.10.0/24 to query external DNS servers)
access-list INSIDE_OUT deny udp any any eq domain (blocks all other DNS requests from internal hosts)
access-list INSIDE_OUT permit ip any any (allow all other traffic)
access-group INSIDE_OUT in interface inside (applies access-list INSIDE_OUT to the inside interface)
Hope that helps.