You'd have to bypass a nasty warning from your browser before this could happen.

Not on a company machine that has the root certificate installed, which is standard procedure if you deploy a system like that.

A really good IDS might be able to catch tunneled traffic purely by looking at the traffic patterns, but I don't know how corkscrew works exactly and if such detection is possible without creating too many false alerts.