The 'Access-Control-Allow-Credentials' HTTP header indicates whether the response to a request can be exposed when the credentials flag is true, allowing the browser to include cookies and HTTP authentication information in cross-origin requests. This header is crucial for maintaining security and privacy in web applications, as it controls how user credentials are shared across different origins.