Cloudflare will add a security cookie to any domain or subdomain that is being proxied by our service. In addition, since Cloudflare is already caching your static content by default, there really is no need to have a cookieless domain.