Well, quite easily, that'd be a cross domain cookie issue, as www and non-www aren't technically the same domain (like using forum.yoursite.tld and
www.yoursite.tld); what I usually recommend people do is set (in their htaccess file) which domain they'd like to use and have apache forward any alternative requests to the primary domain...