Ive had that before and it related to referencing a non secure image (from http://...) within a secure web page (https:///...). From your code though it looks like you're just setting a cookie, and redirecting with no content though.

You don't suppose you are setting a nonsecure cookie from the secure domain ? .. Might be worth a look.