Format can either be named parameters (@pk, @name) with DbParameter objects (CreateParameter) or by using @0,@1 for positional parameters and passing in the actual values.
Uses the Entity Sql Connection
public int ExecuteNonQuery(string sql, Object[] parameters);
parameters
Named parameter objects