It works by creating an anchor link to the site in question and applying a CSS style to the link, specifying a different display property for “a:visited”. By reading the computed style back from the anchor element, you can then determine the property’s value, and consequently if the user had visited the URL or not.
This could probably be used for a number of devious purposes, but Aza’s concept for the SocialHistory library is actually really useful. By querying the default URLs that belong to all the major social network sites, you can figure out which sites a particular user visits and custom tailor any social badges that you display. If they use del.icio.us, you show a del.icio.us link. If they visit Digg, you show the Digg button. It’s an awesome feature made possible by a pretty freaky security leak.
Now, it’s not perfect. It requires that you query the exact URLs that a user may have visited. You can’t figure out everywhere they’ve been, how frequently, or in what order, only whether a particular URL that you know about has been visited before. On the other hand, it’s a pretty useful tool considering you aren’t even supposed to be able to do this.