I think there there are (at least) 2 ways:

1. you add the folder(s) to the robots.txt

Disallow: /folder-url/*

2. You change the setting of the folder using an SQL update statement or by using SSMS

To change a "normal" to a "secure" folder you have to create a secure folder and then move the documents there using the Resource Manager and not the Windows Explorer on the Server directly.

This causes two issues:

1. Links to the document like /Portals/0/documents/mysecret.pdf will not work anymore. In a secure folder, only the file handler (LinkClick.aspx) can access and deliver the documents. The files themselves are renamed to (originalname).(originalextension).resources. A request to /Portals/0/secretdocuments/mysecret.pdf.resources will be blocked by IIS. Only a Url like /LinkClick.aspx?fileticket=BRV-c_Vef5M%3d&tabid=12597&portalid=0&mid=4034&forcedownload=true will deliver the file to the browser in it's original name and extension.
2. Having said that: If you have a link to the document on your public website - even in this Url - Google will be able to access the folder except you apply permissions to that folder to specific usergroups. But you should also hide the link to the document from everyone else. And - as Tycho mentioned - use robots.txt. But there are some nasty search engines that ignore it...

Happy DNNing!
Michael

I also think it's worth noting that telling any search engine to not index any content on your website is only a request. 

It's long been known (discovered) that if a search engine like Google can see the content, it will always index anything it sees, but only serve that index when it's not specifically removed via Robots.txt and/or in the Google Search Console.  I'm not sure if anyone outside of Google knows for sure, but it's assumed (hoped) that this helps to improve the search results in general, but also from your website specifically.