Where does your .NET development team keep its passwords?

With the promise of single sign on, we are all not supposed to need passwords anymore, right? Then why do we have passwords for network routers, sourcecontrol repositories, FTP accounts, POP accounts and so many other things (without even stepping into the physical world of things such as combinations, security code, cellphone pins, etc). Where do you put them? On a post-it note? In Excel? None of these solutions are very secure and don't allow for auditing or secure sharing across your team. One solution is our product, Thycotic Secret Server (http://thesecretserver.com) but I am interested to hear how other teams are doing it!