The STS mechanism tells a client that it should only connect to the server using SSL on a specific port and that it should refuse to connect to the server otherwise. If a server has specified an STS policy in the CAP event on connect, the client is required to use it.
You could use the Clear History feature in the Tools menu in mIRC to clear SSL/STS history and try connecting again. However, if on connecting to the server again, the client sees an STS policy listed, this specifically instructs it to disconnect and to connect directly via the specified SSL port.
Users have come across the same issue in web browsers, where a site, such as Google, requires HSTS, and the browser refuses to connect via a proxy. I have found three options, none of which seem to be usable solutions: disable the proxy (in other words, do not use the BNC), disable STS checking in the browser (a roundabout method was found to do this in Firefox but has probably been fixed by Firefox, since a user should not be able to disable it), or add the proxy's SSL certificate as a Trusted Roots Certificate (in other words, trust the proxy as a MITM for all SSL traffic from your computer, which may not be a good idea, and I am not sure if that would work in mIRC currently anyway).
