Rosario Valotta has published an interesting attack against IE that takes advantage of clickjacking. In a nutshell it combines origin flaws within IE with clickjacking to trick a user into copying/pasting their own cookies from any site! Demonstration below
The technical details can be found at :
https://sites.google.com/site/tentacoloviola/cookiejacking
and his slides at :