This week's book giveaway is in the OCPJP forum. We're giving away four copies of OCA/OCP Java SE 7 Programmer I & II Study Guide and have Kathy Sierra & Bert Bates on-line! See this thread for details.
If you use Statement you can think of it in the same way as opening any database client application and just typing in SQL. You get maximim flexability, but its up to you to handle all the possible issues, such as special characters. So you will need to handle any characters which can break your SQL statement in the SQL statement itself (escaping quotes, properly formatting dates etc).