Secrets are stored in encoding and over time become more secure (for example, limited access, encrypted at rest, etc.). Secrets existed before the creation of ConfigMap, so until recently it was generally accepted to store configuration data in secrets (for example, conf2kube ).
You must use secrets for sensitive data (database passwords, private keys) and ConfigMaps for insensitive configuration data.