I sent you a PM but thought I'd post here for others as well.
vkumaar is correct, they try to do a lookup on www.apple.com, but I'm blocking Web Traffic to anything except my CP-Guest Server, so I believe its simply a DNS lookup and ICMP response to the clients. You can do a couple things, you can add an IP Address for Apple's Website into your Pre-Authentication ACL, or, My suggestion, would be to add the following lines to the same ACL:
Doing this took care of all my Captive Portal Apple issues.
I know, with the old Amigopod, you could add a "/landing.php?/" to the front of your registration page link, and it would Bypass the Apple portion of the captive portal. I have not tried it lately so I do not know if that is still being used with the newer versions of Clearpass Guest. When I move to Clearpass 6.2 in the coming months, I might look at it again. Any developers know for sure if this still is the case with CP 6.2 and up?