The BSSID is the unique MAC address per SSID per radio.  I've linked one article about it and you'll find many others if you search.  On a Cisco AP the BSSID's are all allocated with MAC addresses counting up from the AP base wireless MAC address.
So if you have 5 SSIDs enabled across 3 radios that means you will have 15 BSSIDs.  I suspect some of the bugs might be triggered when there is a large number of BSSIDs so another reason to keep the number of SSID to as few as possible.  I can't find it now but I'm sure I saw a bug recently for AP running out of memory causing problems due to number of BSSID.

just curious: what happens if you manually enter the SSID just like you would with an hidden SSID ?

I also suggest to check how many SSID's are present at the remote site 
some clients have a limit in how many SSID's are shown to select 
if there are a lot of "rogue" access-points, this can fill the list of shown SSID's with no space left for your enterprise SSID.

---

@Koldts wrote:
Our TAC Case guy tried to create our network in his LAB, and he couldn't see any problem at all.

---

What?  Is this some kind of a joke???

TAC cannot "reproduce" anything because they do not have access to hardware.  TAC uses IoL (IOS over Linux) but they require to replicate potential AP-related issues.  And TAC does not have access to APs.  Next, a lot of the issues emerge after prolong use.  Days, weeks, months and not a few hours in a *cough*, "lab", *cough.

Going forward, please remote into one of the APs known to be exhibiting the problem, and furnish the output to the following commands: 

1.  sh logs

2.  sh dot11 wireless

3.  Uptime of the AP (from the controller, use the command "sh ap uptime")

IF, for example, an offending AP is rebooted, does the problem go away? 

Because this is beginning to smell like CSCwe15338.

---

@Koldts wrote:
His exact words were "I have tested in lab and can view the OWE ssid"

---

I am almost certain that is a lie.  

If ever I have a TAC case and the Agent would respond about "testing in a lab", I would always ask for their testing methodology.  They would try to avoid replying that they are using VM.  I need to ask "the right questions" before they will feel "trapped" and finally admit they do not have physical hardware to attempt to reproduce.

Exactly: ask what hardware they used, what software version they used and a diagram showing the network topology they used in the lab.  And ask for actual output from the device like "sh ver" etc to compare to your own.  It will very quickly become obvious if they were just using an emulator rather than real hardware.
We've also had trouble with them testing something on a Wave 2 AP (2800) for a problem with WiFi 6 APs (91xx) and then the commands they told us to use (which they claimed to have tested) didn't work on the 9100 AP.  After quizzing them (because it obviously had not been tested correctly) they admitted they had only tested on 2800 and because it's different hardware the commands don't work on 91xx!  The excuse - they did not have access to any 91xx APs - yes this is Cisco TAC telling us they could not test anything on a WiFi 6 AP just a few months ago!

@Koldts, 

I agree with what @Rich R has to say.  TAC will be unable see any discrepancies if this turns out to be another one of those 911X/912X Broadcom (BCM) wireless chip design fault.  

Be prepared because if you want to get to the bottom of this you will need to drag your accounts team (kicking and screaming) into this case as well as escalate this case up WNBU.  

TAC will do their utmost best to waste your time.  One of the "action item" you'll be asked to perform (numerous times over numerous days) is to get an over-the-air (OTA) packet capture as well as wired packet capture from an AP with known issue.  Like us, we spent several hundred hours.  

Hoi there

>>> When i connected to our Guest SSID when it had hidden OWE transition on <<<
maybe a simple thing: do NOT use a device that has already connected on a site that functions correctly
you are troubleshooting a remote site that behaves differently , -> go to the remote site (or instruct a local ICTér to assist)
you are troubleshooting a (one or more) device that is differently than your own device -> use that device for troubleshooting

>>> Also it would sometimes show Guest-OWE on the wifi list even though it was not broadcasting <<<
yes that happens, if someone in your neighborhood is connected to the hidden Guest-OWE SSID, packets for this SSID are still sent over the wireless (though not broadcast)
that is why making an SSID hidden is NOT a security solution