Just a small update...Thanks to Hervé on IRC, I was able to restrict this issue further to TLS 1.0. If I force no-tlsv10, IE10 / Windows 7 falls back to SSLv3 which works fine.
He advised me to test no-tls-tickets, which still fails when used without no-tlsv10.
Chrome by default uses TLSv1.1, Firefox 21 TLS 1.0, and I have no idea what Safari uses, but neither of those exhibit any issues, even when restricting their protocol support.
--Holger
