I read a disturbing article on Slashdot.org about how hostile websites can read your cookies through Internet Explorer for Windows if Java scripting is enabled. The article, MSIE's Cookies Are Public, contains a link to a demonstration.

PA