One thought is relevant to CP, as a business-focused CRM: “I think WordPress core should have a way to deal with this [cookie consent] and set a framework for plugin and theme developers to work with cookies and all the GDPR rules”.
Not sure, it is a right idea, didn’t have a clear vision yet how it should be done. So, I am starting a discussion about cookies handling in CP here. Is it a real problem and how it can be addressed?
AFAIK CP (nor WP 4.9.x, for the matter) DOES NOT set cookies by itself. At least not in the frontend.
Cookies are being stored when you login - else, no reliable login authentification is possible. But that is purely restricted to the administrative part of CP / WP.
Of corpse, if you use something like a shop system, and want any kind of working cart functionality, cookies are a fixed requirement. The same goes for any kind of frontend dashboard / functionality with logins, eg. user-group based educational systems, like LearnDash or Thrive Apprentice, to name just two of them.
Essentially anything that requires any kind of saving data within the frontend has to rely on the usage of some kind of browser session or storage functionality. That may not necessarly be cookies, the other option, which eg. WooCommerce uses for saving its cart data for offline usage, is the HTML5 Local Storage (for an overview, see eg. Learn web development).
Easier said than done - in order to work properly this would require all plugins to use this scheme. Not to mention custom code like third-party spywareanalytics whose behavior can be rather difficult to control at this level…