Assuming you, for the sake of argument, created an encrypted password in a property called PASSWORD, then
testExec.getStateValue("PASSWORD") would return the unencrypted password.
Internally in the config, the password would be stored as a property named PASSWORD_enc - the "_enc" can be considered as a flag to tell DevTest to decrypt the property on retrieval.