When we create new .xml file, it is created in SYSVOL share, which is cache locally on endpoints that the group policy applies to. This file contains an array of configuration data and defined passwords. The cpassword attribute value is AES-256 bit encrypted, but microsoft published AES private key on MSDN, which can used to decrypt the password.