Java JSP/Servlet engines provide a way to pass session IDs without cookies using URL rewriting (ie. tacking the session information automatically to the end of every URL).

I haven't actually done this myself, but if you are using Apache and have administrative access, there are several Perl modules on CPAN that can use this same technique.

Impossible Robot