Does it make a difference if you load this into Integration services on the server and secure it with a password?
Most likely Visual studio is taking care of the security of sensitive data (connection strings) for you.
I have run into this issue before even when using Native security etc...