Google reckons that cookie theft is a problem for users, and is seeking to address it with a mechanism to tie authentication data to a specific device, rendering any stolen cookies useless. Cookies are still widely used by websites, which get the browser to save information on a session locally to a small file (the cookie) stored on the computer to keep users signed in and store their site preferences.
Source: The Register