The current cookie RFC 2965 specifies that
an HTTP Response header cookie may include
things like $Version= or $HttpOnly, etc.
(Don't confuse them with their Response counterparts which don't have the $ sign).<p>Has anyone actually seen them in practice?