Safari does not (by default) allow cookies to be set in iFrames unless the user has visited the site already. Imagine this code:

# a.com
<iframe src="b.com/iframe">

If you visit b.com directly (any page) and it sets a cookie, then Safari will send that cookie when you visit a.com and the iFrame to b.com is loaded.

However, if you visit a.com without first visiting b.com, then Safari will ignore any cookie that b.com/iframe tries to set.

The solution is described here in the section called "A solution for Safari".

1. Detect if cookies are supported.
2. If not, put an overlay on the page saying, "This site requires cookies. Please click here to continue."
3. When the user clicks on the link/button, open a popup, which sets a cookie and closes itself. On desktops you can make the popup fairly small and innocuous. On mobile devices it is uglier since you can't make the popup smaller than full-screen. However, either way the popup is only on screen for less than a second.
4. The iframe reloads itself and it can now use cookies.

Finally I figured out that Safari does not allow keeping cookies in iframe.

It means that if you need to use cookies, you need to do something.

The solution I found is this:

1. In the iframe code check if session[:safari_cookie_fixed] exist. If not, render a code that will communicate using postMessage with the parent window and let him know that we need a redirection.
2. The parent window send a signal via postMessage to the iframe when the iframe is loaded. The listener, which was rendered in case the cookie does not exist, send a signal to the parent to perform redirect, and the parent does a redirection to /set-cookie page in the iframe domain, adding its current url as a query-string parameter.
3. set_cookie action save a cookie safari_cookie_fixed and redirect back to the parent page (which its url is available in the query-string)

Of-course this solution requires adding some js code in the parent page, but when you give your user the iframe html code you can include the js as well.