Why should a game client allow access to other data than just the player?

Apart from that:
Ask someone you trust and owns pro to build a resource for you which includes the password.

I owuldn't let the clients connect to the database directly anyway. If it does not produce too much load I'd let the server handle such things.

And if this won't work out due to stress on the server, then create a login system and when the user logs in with HIS account (not the mysql account), send back the sql server login data in an encoded way. This way only the decoding routines will be visible for anyone who is looking at the scripts.

While this is not 100% safe either (packet sniffer and all those nice toolies), it's better than having the password and login written clearly anywhere in the client code.