... when it is installed on a new computer, it installs the database 
(mysql or sqlite etc) without the need to first install database?

Yes, but I would suggest, don’t.

Install the database separately (and only once) on a known machine.
Then provide the name/ I.P.Address of that machine when installing all of the client applications.

If you don’t do this, then you run the risk of having the database created on the boss’ laptop and he’s out of the office most of the time!

... is it possible that the content of the database can only be seen by the application?

Yes, up to a point.

You can set up the database security so that the application uses a pre-defined account and credentials that the Users are never told about. If you want users to have “accounts” within the database, then set these up using your own tables, not as actual database accounts. It just makes everything easier – database permissions are only given to the “application” account, not to individual users, which means there’s zero overhead of managing all those user accounts and, if you want these users to have passwords, then you always have a working password-reset mechanism (how’s that going to work if a user can’t connect to the database to reset their password because they’ve forgotten their password?).

But, as always, security is only “so good”; anything that can be built can be broken.

All that said, many client applications with a single, central database is definitely the way to go.