http://dotnet-munesh.blogspot.in/2013/12/cookies.html
Since they are stored on the client side in plain text, they are not secure. Number of cookies that can be stored and their size is limited. They don't work if security level is set too high in browser. Some people might just disable cookies on their browsers.