Is there a CORS-friendly or JSONP version of the Browse Cache service?

No. We recommend that the API call should be performed in the back-end to prevent your API key from being exposed.