[eluser]rafsoaken[/eluser]
I had a look into the source of library/Session.php of the svn version (CI 1.60), and it seems that $this->session->userdata is just not reset when you execute $this->session->sess_destroy().
In the controller you'd have to do either something like:
Code:
$this->session->sess_destroy();
$this->session->userdata=array();
or create a new session - the old one gets deleted along with its data:
Code:
$this->session->sess_create();
In the 2nd case of course, you'd have again a session_id.