Hi Tony,
you are correct and once the connection is established and the mail is sent, there is no way to add a disclaimer.
What about the approach of adding a TLS encrypted footer to all messages, enforce TLS encrypted for all outbound domains/connections and return the messages to the sender where secure TLS is not possible ? - Then you can remove your footer again and tell them NO TLS was possible...