Secrets are used to store and manage sensitive data like passwords, OAuth tokens, SSH keys, and other secrets. They can be mounted into containers at runtime without storing them in the container image or in source code, thus providing a secure way of handling sensitive data. Environment variables, while also being a way to pass configuration to containers, are not considered secure for sensitive data as they can be easily leaked or accessed. Persistent storage is more about data persistence and not specifically about security concerns for sensitive configuration. Configuration files stored within the container image share the same risks as source code and should not be used for sensitive information.