Put simply, the browser is not supposed to send all cookies to all web-pages. Only the cookies originating from the domain of the server in question should be enclosed with the request.
This behaviour can be verified by surfing around for a while and then writing a
servlet or
JSP that retrieves and displays the cookies in a request. Compare the cookies displayed by your servlet/JSP with the cookies your browser tell you are present on your machine. Allowing sites to set cookies in your browser is a prerequisite.
[ June 22, 2007: Message edited by: Navi Nirsak ]