http://threatpost.com/en_us/blogs/html5-being-used-set-persistent-cookies-study-finds-080111

I use Firefox 5 and Windows 7.  Cookies from sites (3rd parties rejected) are deleted when FF5 closes.  Even LSO's are forbidden.  Norton scans, idle and full, never detect cookies.  All's well so far.

According to the link's article, the new html5 can and do re-spawn cookies after a user actively deletes them, often from embedded files.

Isn't re-spawning from embedded files fraught with malicious opportunities?  Does NIS2011 or the incoming NIS2012 deal with this?